Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AVer Information EH6108H+ 信息泄露漏洞
Vulnerability Description
AVer Information EH6108H+是圆展(AVer Information)公司的一款硬盘录像机(DVR)产品。 使用固件X9.03.24.00.07l版本的AVer Information EH6108H+设备存在信息泄露漏洞,该漏洞源于程序以明文base64格式存储密码,并在HTTP Cookie头中要求明文证书。上下文相关的攻击者可通过读取这些字符串利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A