3 matches found
CVE-2021-23845
This vulnerability could allow an attacker to hijack a session while a user is logged in the configuration web page. This vulnerability was discovered by a security researcher in B426 and found during internal product tests in B426-CN/B429-CN, and B426-M and has been fixed already starting from...
CVE-2021-23845 B426 Web Configuration Authentication Bypass
This vulnerability could allow an attacker to hijack a session while a user is logged in the configuration web page. This vulnerability was discovered by a security researcher in B426 and found during internal product tests in B426-CN/B429-CN, and B426-M and has been fixed already starting from...
CVE-2021-23845
CVE-2021-23845 (Bosch B426 Conettix). The Bosch B426 family (e.g., B426, B426-CN/B429-CN, B426-M) has an authentication/session handling issue in the web configuration interface that allows session hijacking due to an improper access control design. Public descriptions confirm the vulnerability w...