Hard-coded Username Vulnerability in Lynxspring JENEsys BAS Bridge

Hard-coded Username Vulnerability in Lynxspring JENEsys BAS Bridge

CVE-2016-8361 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The application uses a hard-coded username with no password allowing an attacker into the system without authentication.

Learn more about our User Device Pen Test.