THREAT OPS › Threat News › [NVD] CVE-2021-46416 (HIGH 8.1) — Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.
[NVD] CVE-2021-46416 (HIGH 8.1) — Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.
CVE-2021-46416 CVSS: 8.1 HIGH Published: 2022-04-07T11:15:10.037
Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to insecure cookie handling.
Indicators of compromise
- CVE-2021-46416cve
Original source: https://nvd.nist.gov/vuln/detail/CVE-2021-46416