XPost: alt.hackers.malicious, alt.2600
2021/03/19 16:55:10 GMT
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE version 2.0.1 suffers an insufficient session
expiration. This occurs when the web application permits an attacker to reuse old session
credentials or session IDs for authorization. Insufficient session expiration increases
the device's exposure to attacks that can steal or reuse user's session identifiers.
https://packetstormsecurity.com/files/161892/ZSL-2021-5646.txt
-- Sven
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)