THREATOPS
THREAT OPSThreat News › [NVD] CVE-2021-46416 (HIGH 8.1) — Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.

[NVD] CVE-2021-46416 (HIGH 8.1) — Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.

lownvdPublished 2022-04-07

CVE-2021-46416 CVSS: 8.1 HIGH Published: 2022-04-07T11:15:10.037

Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2021-46416