CVE-2024-33892
- Reference to the description:
- Description:
- Insecure Permissions vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 are susceptible to leaking information through cookies. This is fixed in version 21.2s10 and 22.1s3
- Last updated date:
- 09/03/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 09/03/2024
- Reference url to background
https://blog.syss.com/posts/hacking-a-secure-industrial-remote-access-gateway/