← back
CVE-2020-35585

CVE-2020-35585

EPSS 1.4%
In Solstice Pod before 3.3.0 (or Open4.3), the screen key can be enumerated using brute-force attacks via the /lookin/info Solstice Open Control API because there are only 1.7 million possibilities.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://documentation.mersive.com/content/pages/release-notes.htmhttps://github.com/aress31/solstice-pod-cveshttps://www.mersive.com/uk/products/solstice/