3xlogic: >> Infinias Eidc32 Security Vulnerabilities
Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-07-26
3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring.
CVSS Score
9.8
EPSS Score
0.001
Published
2020-04-04