Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX M10a Controller web interface. The log out function in the application removes the user's session only on the client side. This may allow an attacker to bypass protection mechanisms, gain privileges, or assume the identity of an authenticated user.
CVSS Information
N/A
Vulnerability Type
服务端安全的客户端实施
Vulnerability Title
ProMinent MultiFLEX M10a Controller Web界面安全漏洞
Vulnerability Description
ProMinent MultiFLEX M10a Controller是意大利ProMinent公司的一款水处理控制器产品。Web interface是其中的一个Web管理界面。 ProMinent MultiFLEX M10a Controller中的Web界面存在安全漏洞,该漏洞源于注销函数只移除了客户端上的用户密钥。攻击者可利用该漏洞绕过安全保护机制,获取权限或冒充用户。
CVSS Information
N/A
Vulnerability Type
N/A