CVE-2020-16098 – It is possible to enumerate access card credentials via an unauthenticated network connect …

15 September 2020

Vuln ID: CVE-2020-16098

Published: 2020-09-15 14:15:13Z

Description: It is possible to enumerate access card credentials via an unauthenticated network connection to the server in versions of Command Centre v8.20 prior to v8.20.1166(MR3), versions of 8.10 prior to v8.10.1211(MR5), versions of 8.00 prior to v8.00.1228(MR6), all versions of 7.90 and earlier. These credentials can then be used to encode low security cards to be used by the system where insecure card technologies are supported.

Source: NVD.NIST.GOV

Date:

15 September 2020

Categorie(s):

NVD

Tag(s):

NVD

Russian APT28 Group in New “GooseEgg” Hacking Campaign23 April 2024
The multitenant dilemma: Gaining more control over user access without compromising data isolation23 April 2024
Hacker Offers Upto $300 To Mobile Networks Staff For Illegal SIM Swaps23 April 2024
Critical Apache HugeGraph Flaw Let Attackers Execute Remote Code23 April 2024
Over a million Neighbourhood Watch members exposed through web app bug23 April 2024