CVE-2023-37362
Last Updated: April 8, 2024
Weintek Weincloud Improper Authentication Vulnerability
Publication Date: 2023-07-18
Severity Level: High
Affected Software
Vendor: Weintek
Product: Weincloud Account API
Affected Versions: Version 0.13.6 and prior
Description
The affected product could allow an attacker to abuse the registration functionality to login with testing credentials to the official website.
Remediation
Fixed Version: v0.13.8
Credit
Hank Chen of TXOne Networks
Questions About This Advisory?
Our PSIRT team is here to help with security-related inquiries.
psirt@txone.com