CVE-2023-42769 Information

Description

The cookie session ID is of insufficient length and can be exploited by brute force which may allow a remote attacker to obtain a valid session bypass authentication and manipulate the transmitter.

Reference

https://www.sielco.org/en/contacts https://www.cisa.gov/news-events/ics-advisories/icsa-23-299-08