Galaxy Software Services Vitals ESP is vulnerable to using a hard-coded encryption key. An unauthenticated remote attacker can generate a valid token parameter and exploit this vulnerability to access system to operate processes and access data. This issue affects Vitals ESP: from 3.0.8 up to and including 6.2.0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gss vitals enterprise social platform |