Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3
could allow a guest user to elevate to admin privileges.
Weakness
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 2.5.1 (including) | 2.5.1 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 2.5.2 (including) | 2.5.2 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 2.5.3 (including) | 2.5.3 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 2.6.1 (including) | 2.6.1 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 2.11 (including) | 2.11 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 3.0 (including) | 3.0 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 3.2 (including) | 3.2 (including) |
| Maglink_lx_web_console_configuration | Doverfuelingsolutions | 3.3 (including) | 3.3 (including) |