← back
CVE-2020-21997

CVE-2020-21997

EPSS 2.7%
Smartwares HOME easy <=1.0.9 is vulnerable to an unauthenticated database backup download and information disclosure vulnerability. An attacker could disclose sensitive and clear-text information resulting in authentication bypass, session hijacking and full system control.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cwe.mitre.org/data/definitions/306.htmlhttps://www.exploit-db.com/exploits/47596https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5541.php