3 matches found
CVE-2023-46663
The CVE-2023-46663 entry concerns improper access control in Sielco PolyEco1000 (and related PolyEco family) where the web interface allows actions via crafted HTTP requests without proper validity checks, enabling an attacker to bypass authorization and access resources behind protected pages. C...
CVE-2023-46663 Improper Access Control in Sielco PolyEco1000
Sielco PolyEco1000 is vulnerable to an attacker bypassing authorization and accessing resources behind protected pages. The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests...
Sielco PolyEco FM Transmitter
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : Sielco Equipment : PolyEco1000 Vulnerabilities : Session Fixation, Improper Restriction of Excessive Authentication Attempts, Improper Access Control 2. RISK...