3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side’s interpretation of the MYKEY substring.
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.