mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-25 16:47:53 +02:00
0xMarcio
778 B
778 B
CVE-2022-3217
Description
When logging in to a VBASE runtime project via Web-Remote, the product uses XOR with a static initial key to obfuscate login messages. An unauthenticated remote attacker with the ability to capture a login session can obtain the login credentials.
POC
Reference
Github
No PoCs found on GitHub currently.