PT-2024-13716 · Hongdian · H8951-4G-Esp+1
Robert Pogorzelski
·
Published
2024-01-12
·
Updated
2024-10-10
·
CVE-2023-49259
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
The authentication cookies are generated using an algorithm based on the
username, a hardcoded secret, and the up-time, and can be guessed in a reasonable time.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
H8951-4G-Esp
H8951-4G-Esp Firmware