CVE-2020-24683

Name of the Vulnerable Software and Affected Versions S+ Operations versions 2.1 SP1 and earlier

Description The issue concerns the use of client-side authentication in the affected versions, which is less secure than server-side validation. This allows unauthorized actors to bypass authentication and make unauthorized connections to the server application if the network communication or endpoints are not protected.

Recommendations For versions 2.1 SP1 and earlier, consider implementing server-side validation for user authentication to enhance security. As a temporary workaround, ensure that network communication and endpoints for these applications are properly protected to minimize the risk of exploitation.