Title: Easergy T300 Firmware 2.7 and Older - Missing Authentication for Critical Function Vulnerability

Title: Easergy T300 Firmware 2.7 and Older - Missing Authentication for Critical Function Vulnerability

CVE-2020-7561 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T300 (with firmware 2.7 and older) that could cause a wide range of problems, including information exposure, denial of service, and command execution when access to a resource from an attacker is not restricted or incorrectly restricted.

Learn more about our Web Application Penetration Testing UK.