漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtered by the modem when creating the account, but cannot be deleted by the administrator, possibly due to cleansing that occurs in the administrator interface.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Thomson SpeedTouch 500系列跨站脚本攻击漏洞
Vulnerability Description
Thomson SpeedTouch调制解调器(固件版本:5.3.2.6.0)可使远程攻击者借助NewUser功能"31"参数中的脚本代码(创建帐号时没有被调制解调器过滤掉,但是无法被管理员删除,可能是由于管理员界面中发生的清理过程)创建无法删除的用户。
CVSS Information
N/A
Vulnerability Type
N/A