Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PolyVision RoomWizard管理界面敏感信息泄露漏洞
Vulnerability Description
通过HTTP端口80访问的web表单中的置于Sync Connector Active Directory(AD)证书内带有固件3.2.3版本的RoomWizard的管理界面中存在漏洞。远程攻击者可以通过读取对应/admin/sign/DeviceSynch URI的HTTP源代码获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A