2 matches found
CVE-2021-4228 Hard-coded TLS Certificate
Use of hard-coded TLS certificate by default allows an attacker to perform Man-in-the-Middle MitM attacks even in the presence of the HTTPS connection. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.00.0...
CVE-2021-4228
CVE-2021-4228 affects Lanner Inc IAC-AST2500A standard firmware version 1.00.0. The root cause is the default use of a hard-coded TLS certificate, enabling MITM attacks even over HTTPS. Documents consistently describe this issue for the IAC-AST2500A firmware and reference updated firmware to addr...