Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
eyeOS uses predictable checksum values in the checknum parameter for access control, which allows remote attackers to register many accounts via doCreateUser actions, add many eyeBoard messages via addMsg actions, and cause a denial of service or conduct certain unauthorized activities, by guessing valid parameter values.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EyeOS Project EyeOS Unknown 权限许可和访问控制漏洞
Vulnerability Description
eyeOS使用访问控制的checknum参数中的checksum值,这会允许远程攻击者可以借助doCreateUser操作,登记许多账户,可以借助addMsg操作,添加许多eyeBoard信息,并通过猜测有效参数值,造成拒绝服务或执行某些未授权操作。
CVSS Information
N/A
Vulnerability Type
N/A