4 matches found
CVE-2022-47560
The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in...
CVE-2022-47560 Cleartext Transmission of Sensitive Information in Ormazabal products
The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in...
CVE-2022-47560
CVE-2022-47560 affects ekorCCP and ekorRCI devices. Root cause: lack of web request control enables an attacker to craft custom requests while a user is logged in, potentially triggering malicious actions. Documented impacts include higher confidentiality risk (CVE/metrics note HIGH confidentiali...
CVE-2022-47560 Cleartext Transmission of Sensitive Information in Ormazabal products
The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in...