SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER Open Automation Software OAS Platform REST API unauthenticated vulnerability
The rule will alert on attempts to authenticate with an empty username and password, which allows the access to application features without proper authentication.
The rule will alert on attempts to authenticate with an empty username and password, which allows the access to application features without proper authentication.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
Authentication Bypass
An Authentication Bypass occurs when there is a way to avoid providing user credentials to a system before performing restricted operations on said system.
CVE-2007-4218 |
Loading description
|
Tactic: Privilege Escalation
Technique: Bypass User Account Control
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org