Skip to main content

Infinias Eidc32 Firmware

1 CVEs product

Monthly

CVE-2020-11542 CRITICAL POC Act Now

3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Infinias Eidc32 Firmware Infinias Eidc32 Web
NVD
CVSS 3.1
9.8
EPSS
1.0%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Infinias Eidc32 Firmware Infinias Eidc32 Web
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy