CVE-2017-14003

CVE-2017-14003

Vendor N/A
Product LAVA Computer MFG Inc. Ether-Serial Link
Weakness CWE-290
Published October 11, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An Authentication Bypass by Spoofing issue was discovered in LAVA Ether-Serial Link (ESL) running firmware versions 6.01.00/29.03.2007 and prior versions. An improper authentication vulnerability has been identified, which, if exploited, would allow an attacker with the same IP address to bypass authentication by accessing a specific uniform resource locator.

Key dates

02Disclosure timeline

October 11, 2017 CVE published
August 5, 2024 Record updated