Unrestricted Database Access Vulnerability in ECOS System Management Appliance (SMA) 5.2.68

Unrestricted Database Access Vulnerability in ECOS System Management Appliance (SMA) 5.2.68

CVE-2018-12335 · MEDIUM Severity

AV:A/AC:L/AU:S/C:P/I:P/A:N

Incorrect access control in ECOS System Management Appliance (aka SMA) 5.2.68 allows a user to compromise authentication keys, and access and manipulate security relevant configurations, via unrestricted database access during Easy Enrollment.

Learn more about our User Device Pen Test.