Deep Sea Electronics DSE855 Remote Authentication Bypass | allinfosecnews.com

July 3, 2024, 3:32 p.m. |

Packet Storm packetstormsecurity.com

Deep Sea Electronics DSE855 is vulnerable to configuration disclosure when direct object reference is made to the Backup.bin file using an HTTP GET request. This will enable an attacker to disclose sensitive information and help her in authentication bypass, privilege escalation, and full system access.

access attacker authentication authentication bypass backup bypass configuration disclosure electronics enable escalation file http http get information object privilege privilege escalation reference remote authentication request sea sensitive sensitive information system using vulnerable

More from packetstormsecurity.com / Packet Storm

WordPress Video Gallery - YouTube Gallery And Vimeo Gallery 2.3.6 SQL Injection 1 day, 13 hours ago | packetstormsecurity.com

gallery injection sql sql injection +6

Cinema Booking System 1.0 SQL Injection / Cross Site Request Forgery 1 day, 13 hours ago | packetstormsecurity.com

booking cinema forgery injection +7

Gentoo Linux Security Advisory 202407-17 1 day, 13 hours ago | packetstormsecurity.com

advisory arbitrary code arbitrary code execution busybox +8

Gentoo Linux Security Advisory 202407-16 1 day, 14 hours ago | packetstormsecurity.com

advisory arbitrary code arbitrary code execution buffer +12

Ubuntu Security Notice USN-6879-1 1 day, 14 hours ago | packetstormsecurity.com

attacker crash denial of service issue +8

Ubuntu Security Notice USN-6873-2 1 day, 14 hours ago | packetstormsecurity.com

accelerator access analytics attacker +22

Gentoo Linux Security Advisory 202407-15 1 day, 14 hours ago | packetstormsecurity.com

advisory arbitrary code arbitrary code execution code +7

Gentoo Linux Security Advisory 202407-14 1 day, 14 hours ago | packetstormsecurity.com

advisory code code execution gentoo +7

Ubuntu Security Notice USN-6872-2 1 day, 14 hours ago | packetstormsecurity.com

attacker compromise issues kernel +9

Identity & Access Management, Senior Associate

@ PwC | Toronto - 18 York Street

View on infosec-jobs.com

Senior Manager, AI Security

@ Lloyds Banking Group | London 10 Gresham Street

View on infosec-jobs.com

Senior Red Team Engineer

@ Adobe | Remote California

View on infosec-jobs.com

Product Security Associate

@ Salesforce | Washington - Seattle

View on infosec-jobs.com

Security architect (SOC)

@ Alter Solutions | Paris, France

View on infosec-jobs.com

Principal Member of Technical Staff

@ Oracle | Romania

View on infosec-jobs.com