Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In SapphireIMS 4097_1, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference (IDOR) in the local user creation function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tecknodreams SapphireIMS 安全漏洞
Vulnerability Description
Tecknodreams SapphireIMS是印度Tecknodreams公司的ITIL 2011 认证的企业级服务管理系统。 Tecknodreams SapphireIMS 4097_1 中存在安全漏洞,该漏洞源于本地用户创建功能中的不安全直接对象引用 (IDOR),访客用户可以利用该漏洞在任何安装了 SapphireIMS 的系统上创建本地管理员帐户。
CVSS Information
N/A
Vulnerability Type
N/A