Critical severity9.8NVD Advisory· Published May 6, 2017· Updated Jun 17, 2026
CVE-2017-7909
CVE-2017-7909
Description
A Use of Client-Side Authentication issue was discovered in Advantech B+B SmartWorx MESR901 firmware versions 1.5.2 and prior. The web interface uses JavaScript to check client authentication and redirect unauthorized users. Attackers may intercept requests and bypass authentication to access restricted web pages.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:o:advantech_b\+b_smartworx:mesr901_firmware:*:*:*:*:*:*:*:*Range: <=1.5.2
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/98257nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSA-17-122-03nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.