2 matches found
CVE-2022-30623
CVE-2022-30623 affects Chcnav P5E GNSS. The vulnerability arises from non-standard cookie handling: an attacker can set a cookie value name (status) to true to bypass system authentication (username/password). This results in authentication bypass with impacts described as high confidentiality, i...
CVE-2022-30623 Chcnav - P5E GNSS Authentication bypass
The server checks the user's cookie in a non-standard way, and a value is entered in the cookie value name of the status and its value is set to true to bypass the identification with the system using a username and password...