CVE-2014-4198
EUVD-2014-412713.02.2020, 19:15
A Two-Factor Authentication Bypass Vulnerability exists in BS-Client Private Client 2.4 and 2.5 via an XML request that neglects the use of ADPswID and AD parameters, which could let a malicious user access privileged function.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| bssys | rbs_bs-client._retail_client | 2.4 |
| bssys | rbs_bs-client._retail_client | 2.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration