CVE advisoryCRITICAL
CVE-2021-3854
Attacker can take control of Useroam Hotspot or steal sensitive data
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A critical flaw in Glox Technology Useroam Hotspot lets attackers steal data or take control without needing a password, due to SQL injection. This is a serious risk as it's easily exploitable over the internet.