Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in plaintext.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenText Exceed OnDemand 安全绕过漏洞
Vulnerability Description
OpenText Exceed OnDemand(EoD)是加拿大OpenText公司的一套专为企业设计的用于远程访问托管应用程序的解决方案。该方案支持多用户共享同一个Exceed onDemand进程、暂停和恢复Exceed onDemand进程、本地打印等。 EoD 8版本中存在安全漏洞。攻击者可通过发送响应中特制的字符串利用该漏洞实施中间人攻击,禁用双向认证,并获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A