CVE-2021-45036 Information

Description

Velneo vClient on its 28.1.3 version could allow an attacker with knowledge of the victims’s username and hashed password to spoof the victim’s id against the server.

Reference

https://www.incibe-cert.es/en/early-warning/security-advisories/velneo-vclient-improper-authentication-0