What the vulnerability does

01Description

An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted management APIs being accessible without a user login, potentially exposing configuration meta-data.

Key dates

02Disclosure timeline

December 23, 2021 CVE published
August 3, 2024 Record updated