2 matches found
CVE-2023-28649
CVE-2023-28649 affects Snap One OvrC cloud platform hubs (OvrC Pro/Connect). A input-validation flaw lets an attacker impersonate a hub to send device-claim requests and bypass checks for devices already managed by another user, enabling potential unauthorized access and, per advisory context, po...
CVE-2023-28649
The Hub in the Snap One OvrC cloud platform is a device used to centralize and manage nested devices connected to it. A vulnerability exists in which an attacker could impersonate a hub and send device requests to claim already claimed devices. The OvrC cloud platform receives the requests but do...