Replay Attack Vulnerability in Meross MSG100 Devices

Replay Attack Vulnerability in Meross MSG100 Devices

CVE-2021-35067 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Meross MSG100 devices before 3.2.3 allow an attacker to replay the same data or similar data (e.g., an attacker who sniffs a Close message can transmit an acceptable Open message).

Learn more about our Web Application Penetration Testing UK.