An improper authentication vulnerability exists in the REST API functionality of Open Automation Software OAS Platform V16.00.0121. A specially-crafted series of HTTP requests can lead to unauthenticated use of the REST API. An attacker can send a series of HTTP requests to trigger this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:HOpenautomationsoftware Oas Platform
APPOpenautomationsoftware16.00.0112
Related vulnerabilities
A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Softw...
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS ...
An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS ...
An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automatio...
A denial of service vulnerability exists in the OAS Engine SecureConfigValues functionality of Open Automation...