Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 do not require authentication from Alarm Receiving Center (ARC) servers, which allows man-in-the-middle attackers to bypass intended access restrictions via a spoofed HSxx response.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CSL DualCom GPRS CS2300-R SPT 授权问题漏洞
Vulnerability Description
CSL DualCom GPRS CS2300-R SPT是英国CSL DualCom公司的一款报警信号板,它在防盗报警和监控中心之间提供一个通信链路,当警报响起时可将信号通过移动网络、普通电话线或互联网发送到监控中心。 使用1.25版本至3.53版本固件的CSL DualCom GPRS CS2300-R SPT中存在安全漏洞,该漏洞源于程序没有要求执行双向认证。远程攻击者可借助伪造的HSxx响应利用该漏洞实施中间人攻击,绕过既定的访问限制。
CVSS Information
N/A
Vulnerability Type
N/A