2 matches found
CVE-2023-45911
The CVE-2023-45911 entry concerns WIPOTEC GmbH ComScale versions 4.3.29.21344 to 4.4.12.723, where an authentication bypass allows unauthenticated attackers to log in as any user without a password. The issue is a login-access control vulnerability (no password required) that impacts network-expo...
CVE-2023-45912
WIPOTEC ComScale versions 4.3.29.21344 and 4.4.12.723 fail to validate user sessions, allowing unauthenticated attackers to read files from the OS and obtain directory listings. Affects ComScale software; root cause is session validation failure. Potential impact: information disclosure (high). P...