Advertisement
Top
image credit: Unsplash

Vulnerability Provided Access to Toyota Supplier Management Network

February 7, 2023

Via: Security Week
Category:

The issue was identified by US-based researcher Eaton Zveare in Toyota’s Global Supplier Preparation Information Management System (GSPIMS), a web portal that provides Toyota employees and suppliers with access to ongoing projects, surveys, information on purchases, and more.

The issue, Zveare says, was related to the implementation of JWT (JSON Web Token) authentication and could allow access to any account to anyone using a valid email address.

Read More on Security Week

RELATED PUBLICATIONS

Ransomware evolves from mere extortion to ‘psychological attacks’
City of Wichita hit by a ransomware attack
Russian hackers target EU countries using a simple Microsoft Outlook security flaw

Latest Publications

Ransomware evolves from mere extortion to ‘psychological attacks’
City of Wichita hit by a ransomware attack
Russian hackers target EU countries using a simple Microsoft Outlook security flaw
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!