Openautomationsoftware: Security Vulnerabilities
An external config control vulnerability exists in the OAS Engine SecureAddSecurity functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of a custom Security Group. An attacker can send a sequence of requests to trigger this vulnerability.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-05-25
Page 3