ClickJacking Vulnerability in Impinj Speedway Connect R420 RFID Reader

ClickJacking Vulnerability in Impinj Speedway Connect R420 RFID Reader

CVE-2018-5304 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or perform other malicious actions.

Learn more about our Web App Pen Testing.