Cmc Iii Processing Units Firmware
Monthly
The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.