13 Layers
SHARE

The entree controls on the Mobility read-write API improperly validate user access permissions; this API is disabled by default. If the API is manually enabled, attackers with both network accession to the API and valid credentials can read and write data to it; regardless of admittance control group membership settings. This vulnerability is fixed in Mobility v12.14. (CVSS:0.0) (Concluding Update:2021-09-16)

13 Layers Managed Security Services