Primary

Context

Elfatek Elektronics ANKA JPD-00028 Authentication Bypass Vulnerability Allowing Session Hijacking

Vulnerability

A vulnerability allowing authentication bypass through capture-replay attacks has been identified in Elfatek Elektronics ANKA JPD-00028, affecting versions through 19.03.2025. This vulnerability allows session hijacking, enabling attackers to take over user sessions.

Impact

Exploitation of this vulnerability could lead to session hijacking, allowing attackers to impersonate users and potentially gain unauthorized access to sensitive information or functionalities.

Remediation

The vendor has not yet addressed this vulnerability. Users are advised to consider using alternative software.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Elfatek Elektronics ANKA JPD-00028 Authentication Bypass Vulnerability Allowing Session Hijacking

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating