Tesla Retail Tool Vulnerability Led to Account Takeover
Tesla Retail Tool Vulnerability Led to Account Takeover
08 April 2023
The application allows both internal and external account logins and uses for authentication a JSON Web Token (JWT) that specifies an email address cleared for manually defined user accounts, security researcher Evan Connelly explains.