LanatmserviceCVEs & Vulnerabilities
2 CVEs affecting Lanatmservice products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
m3 atm monitoring system 2
CVE-2020-29667CRITICAL
In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration.
10 Dec 2020
9.8
CVSS
CVE-2020-29666MEDIUM
In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and the predefined developer's cookie value.
10 Dec 2020
5.3
CVSS
← PrevPage 1 / 1Next →