An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2021-12-22T18:06:44
Updated: 2024-08-03T18:30:22.862Z
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-21902
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-12-22T19:15:09.667
Modified: 2022-08-31T19:17:10.623
Link: CVE-2021-21902
Redhat
No data.