4 matches found
CVE-2019-11523
Anviz Global M3 Outdoor RFID Access Control executes any command received from any source. No authentication/encryption is done. Attackers can fully interact with the device: for example, send the "open door" command, download the users list which includes RFID codes and passcodes in cleartext, o...
Design/Logic Flaw
Anviz Global M3 Outdoor RFID Access Control executes any command received from any source. No authentication/encryption is done. Attackers can fully interact with the device: for example, send the "open door" command, download the users list which includes RFID codes and passcodes in cleartext, o...
CVE-2019-11523
Anviz Global M3 Outdoor RFID Access Control executes any command received from any source. No authentication/encryption is done. Attackers can fully interact with the device: for example, send the "open door" command, download the users list which includes RFID codes and passcodes in cleartext, o...
CVE-2019-11523
The CVE-2019-11523 issue affects the Anviz M3 Outdoor RFID Access Control. The vulnerability arises from a lack of authentication and encryption in the device’s TCP/IP network communications, allowing an attacker to send commands (e.g., open door), retrieve the user list (RFID codes and plaintext...