da_667 on Nostr: If I had a nickel for every time an IoT device just said "fuck it, we'll use some ...
If I had a nickel for every time an IoT device just said "fuck it, we'll use some weird javascript method to handle device auth on the client side" and that immediately bit them in the ass...
I'd have two nickels, which isn't a lot, but weird that I've seen it twice in as many years.
https://ssd-disclosure.com/ssd-advisory-uniview-ipc2322lb-auth-bypass-and-cli-escape/
I'd have two nickels, which isn't a lot, but weird that I've seen it twice in as many years.
https://ssd-disclosure.com/ssd-advisory-uniview-ipc2322lb-auth-bypass-and-cli-escape/