5 matches found
CVE-2021-22661
Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E Versions 1.9.62 and prior...
CVE-2021-22661
creationtimestamp| type| source ---|---|--- 2021-02-26 18:39:03+00:00| seen| https://t.me/cibsecurity/24224...
CVE-2021-22661
Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E Versions 1.9.62 and prior...
CVE-2021-22661
Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E Versions 1.9.62 and prior...
CVE-2021-22661
ProSoft Technology ICX35-HWC-A and ICX35-HWC-E (Versions 1.9.62 and earlier) are affected by CVE-2021-22661. The issue stems from permissions/privileges and access controls in the module web interface: changing the password on the module webpage does not require the current password, allowing a p...