CVE-2022-42787 Information

Description

Multiple W&T products of the Comserver Series use a small number space for allocating sessions ids. An unathenticated remote attacker can brute force the session id and gets access to an account on the the device.

Reference

https://cert.vde.com/de/advisories/VDE-2022-043