Security Advisory

CVE-2023-38030

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-28 06:44:16

Last updated 2024-10-03 12:58:30

Assigner twcert

State PUBLISHED

Description

Saho’s attendance devices ADM100 and ADM-100FP have a vulnerability of missing authentication for critical functions. An unauthenticated remote attacker can execute system commands in partial website URLs to read sensitive device information without permissions.

← Browse all CVEs View on cve.org ↗