QwikSec

Security Database

CVE

CWE

Training

CVE-2020-21997

Published: Apr 29, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

Smartwares HOME easy <=1.0.9 is vulnerable to an unauthenticated database backup download and information disclosure vulnerability. An attacker could disclose sensitive and clear-text information resulting in authentication bypass, session hijacking and full system control.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5541.php

x_refsource_MISC

Exploit Database

exploit

x_refsource_EXPLOIT-DB

https://cwe.mitre.org/data/definitions/306.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.