CVE-2015-7910 Information

Description

Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response body.

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-321-01