C-MORE HMI EA9 Authentication Bypass Vulnerability ZDI ID: ZDI-20-805 ZDI-CAN ID: ZDI-CAN-10182 CVE ID: CVE-2020-10918 CVSS Score: 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) Affected Vendor: C-MORE Affected Product: HMI EA9 Vulnerability Details This vulnerability allows remote attackers to bypass authentication on affected installations of C-MORE HMI EA9 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication mechanism due to insufficient authentication on post-authentication requests. An attacker can leverage this vulnerability toescalate privileges to resources normally protected from unauthenticated users. Additional Details Fixed in version 6.60 Disclosure Timeline 2020-02-10: Vulnerability reported to vendor 2020-07-07: Coordinated public release of advisory 2020-11-24: Advisory Updated Credit Ta-Lun Yen & Chizuru Toyama of TXOne IoT/ICS Security Research Labs (Trend Micro)