Improper Session Handling in AdRem NetCrunch 10.6.0.4587 Web Client: Authentication Bypass and Privilege Escalation Vulnerability

Improper Session Handling in AdRem NetCrunch 10.6.0.4587 Web Client: Authentication Bypass and Privilege Escalation Vulnerability

CVE-2019-14480 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication bypass or escalation of privileges.

Learn more about our Web App Pen Testing.