2022-08-22 18:25:14
talos
PUBLISHED
An improper password check exists in the login functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. An attacker that owns a users password hash will be able to use it to directly login into the account, leading to increased privileges.