Osprey Pump Controller version 1.01 is vulnerable to a weak session token generation algorithm that can be predicted and can aid in authentication and authorization bypass. This may allow an malicious user to hijack a session by predicting the session id and gain unauthorized access to the product.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
propumpservice osprey_pump_controller_firmware 1.01 |