Remote Access as Administrator through Inadequate Credential Management in C21 Live Encoder and Live Mosaic v5.3

Remote Access as Administrator through Inadequate Credential Management in C21 Live Encoder and Live Mosaic v5.3

CVE-2024-0642 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to access the application as an administrator user through the application endpoint, due to lack of proper credential management.

Learn more about our User Device Pen Test.