Session Validity Check Issues in Invigo ADM 5.0 Allow Remote Data Access

Session Validity Check Issues in Invigo ADM 5.0 Allow Remote Data Access

CVE-2020-10581 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Multiple session validity check issues in several administration functionalities of Invigo Automatic Device Management (ADM) through 5.0 allow remote attackers to read potentially sensitive data hosted by the application.

Learn more about our Web Application Penetration Testing UK.