CVE-2017-14003

Summary

An Authentication Bypass by Spoofing issue was discovered in LAVA Ether-Serial Link (ESL) running firmware versions 6.01.00/29.03.2007 and prior versions. An improper authentication vulnerability has been identified, which, if exploited, would allow an attacker with the same IP address to bypass authentication by accessing a specific uniform resource locator.

Affected Software

VendorProductVersion RangeStatus
n/aLAVA Computer MFG Inc. Ether-Serial LinkLAVA Computer MFG Inc. Ether-Serial Linkaffected

Weaknesses

  • CWE-290: CWE-290

ADP Enrichment

CVE Program Container

Additional References

References