Security Advisory

CVE-2021-42949

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-16 14:45:36

Last updated 2025-06-03 18:17:17

Assigner mitre

State PUBLISHED

Description

The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks.

← Browse all CVEs View on cve.org ↗