An improper session validation allows an unauthenticated attacker to cause certain request notifications to be executed in the context of an incorrect user by spoofing the client IP address.CreditsStefan Grönke (gronke@radicallyopensecurity.com)Referenceshttps://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25362