all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

MOKOSmart MKGW1 Gateway Improper Session Management

Add to bookmarks
Dec. 20, 2023, 1:11 p.m. |

Packet Storm packetstormsecurity.com

MOKOSmart MKGW1 Gateway devices with firmware version 1.1.1 or below do not provide an adequate session management for the administrative web interface. This allows adjacent attackers with access to the management network to read and modify the configuration of the device.

1.1.1 access attackers configuration device devices firmware gateway interface management network session version version 1 web web interface

Visit resource

More from packetstormsecurity.com / Packet Storm

Openmediavault Remote Code Execution / Local Privilege Escalation 2 hours ago | packetstormsecurity.com
admin can code code execution +20
RIOT 2024.01 Buffer Overflows / Lack Of Size Checks / Out-Of-Bound Access 2 hours ago | packetstormsecurity.com
access buffer buffer overflows memory +4
I2P 2.5.1 2 hours ago | packetstormsecurity.com
applications can code data +12
Zed Attack Proxy 2.15.0 Cross Platform Package 2 hours ago | packetstormsecurity.com
applications attack cross platform developers +18
AIDE 0.18.8 2 hours ago | packetstormsecurity.com
advanced aide algorithms can +17
Microsoft PlayReady Complete Client Identity Compromise 2 hours ago | packetstormsecurity.com
attack client communication compromise +16
Panel Amadey.d.c MVID-2024-0680 Cross Site Scripting 3 hours ago | packetstormsecurity.com
amadey cross site scripting malware panel +2
Clinic Queuing System 1.0 Remote Code Execution 3 hours ago | packetstormsecurity.com
code code execution remote code remote code execution +4
Debian Security Advisory 5686-1 3 hours ago | packetstormsecurity.com
advisory corruption debian debian linux security +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information System Security Officer / Auditor

@ Peraton | Washington, DC, United States
View on infosec-jobs.com

Senior Cloud Security Engineer

@ Alludo | US | Boston, MA, US | San Francisco, CA, US | Austin, TX, US
View on infosec-jobs.com

Tier 3 - Malware Analyst, SME

@ Resource Management Concepts, Inc. | Quantico, Virginia, United States
View on infosec-jobs.com

Temp to Hire Senior DevSecOps Engineer

@ Scientific Systems Company, Inc. | Burlington, Massachusetts, United States
View on infosec-jobs.com

Security Engineer III - Splunk | SIEM

@ JPMorgan Chase & Co. | Plano, TX, United States
View on infosec-jobs.com

Information Systems Security Officer / Auditor

@ Peraton | Washington, DC, United States
View on infosec-jobs.com
View more jobs