CVE-2014-4198 - Bssys Rbs Bs-client. Retail Client

Critical 9.1

A Two-Factor Authentication Bypass Vulnerability exists in BS-Client Private Client 2.4 and 2.5 via an XML request that neglects the use of ADPswID and AD parameters, which could let a malicious user access privileged function.

Affected software

Bssys Rbs Bs-client. Retail Client

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.