CVE-2023-0897 Information

Description

Sielco PolyEco1000 is vulnerable to a session hijack vulnerability due to the cookie being vulnerable to a brute force attack lack of SSL and the session being visible in requests.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-07