CVE-2023-36483
MAS (a Carrier brand) MASmobile Classic Authorization Bypass
Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and
MASmobile Classic iOS version 1.7.24 and earlier
which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Productos afectados
MAS (a Carrier brand) · MAS ASP.Net ServicesMAS (a Carrier brand) · MASmobile Classic¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →