Authorization bypass in GAMS from GAMS Development Corp.

Vulnerability in the access control system of the GAMS licensing system that allows unlimited valid licenses to be generated, bypassing any usage restrictions. The validator uses an insecure checksum algorithm; knowing this algorithm and the format of the license lines, an attacker can recalculate the checksum and generate a valid license to grant themselves full privileges without credentials or access to the source code, allowing them unrestricted access to GAMS's mathematical models and commercial solvers.

N/A

通过用户控制密钥绕过授权机制

AMS Development GAMS 安全漏洞

AMS Development GAMS是印度AMS Development公司的一个代数建模系统。 AMS Development GAMS存在安全漏洞，该漏洞源于校验和使用不安全算法，可能导致生成无限有效许可证。

N/A

N/A