Vulnerabilities > CVE-2020-29667 - Insufficient Session Expiration vulnerability in Lanatmservice M3 ATM Monitoring System 6.1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |