Brightpick Mission Control discloses device telemetry, configuration, and credential information via WebSocket traffic to unauthenticated u…
Brightpick Mission Control discloses device telemetry, configuration, and credential information via WebSocket traffic to unauthenticated users when they connect to a specific URL. The unauthenticated URL can be discovered through basic network scanning techniques.
Login pages do not use adequate measures to protect the user name and password while they are in transit from the client to the server.
https://cwe.mitre.org/data/definitions/523.html →Open in CWE collection →Session sidejacking takes advantage of an unencrypted communication channel between a victim and target system. The attacker sniffs traffic on a network looking for session tokens in unencrypted traffic. Once a session token is captured, the attacker performs malicious actions by using the stolen token with the targeted application to impersonate the victim. This attack is a specific method of session hijacking, which is exploiting a valid session token to gain unauthorized access to a target system or information. Other methods to perform a session hijacking are session fixation, cross-site scripting, or compromising a user or server machine and stealing the session token.
https://capec.mitre.org/data/definitions/102.html →Open in CAPEC collection →