Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Kiwi CatTools before 3.2.0 beta uses weak encryption ("reversible encoding") for passwords, account names, and IP addresses in kiwidb-cattools.kdb, which might allow local users to gain sensitive information by decrypting the file. NOTE: this issue could be leveraged with a directory traversal vulnerability for a remote attack vector.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kiwi CatTools IP地址弱编码信息泄露漏洞
Vulnerability Description
Kiwi CatTools 3.2.0 beta版本之前的版本运行密码,账户和kiwidb-cattools.kdb中的IP地址的弱编码("可逆的编码")。这会允许本地用户通过破解文件来获得敏感信息。注意:该漏洞可以与目录遍历漏洞结合。
CVSS Information
N/A
Vulnerability Type
N/A