cve/CVE-2021-37292.md at 7909e50b64548be2689e5ad0bc37714dc0608a96

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

An Access Control vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 due to an undocumented backdoor account. A malicious user can log in using the backdor account with admin highest privileges and obtain system control.

POC

Reference

https://www.zeroscience.mk/en/vulnerabilities/

Github

https://github.com/20142995/Goby
https://github.com/ARPSyndicate/cvemon
https://github.com/HimmelAward/Goby_POC
https://github.com/Z0fhack/Goby_POC

845 B Raw Blame History

CVE-2021-37292

Description

POC

Reference

Github

845 B

Raw Blame History