Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Use of Client-Side Authentication issue was discovered in Advantech B+B SmartWorx MESR901 firmware versions 1.5.2 and prior. The web interface uses JavaScript to check client authentication and redirect unauthorized users. Attackers may intercept requests and bypass authentication to access restricted web pages.
CVSS Information
N/A
Vulnerability Type
使用客户端的认证机制
Vulnerability Title
Advantech B+B SmartWorx MESR901固件安全漏洞
Vulnerability Description
Advantech B+B SmartWorx MESR901是中国研华(Advantech)公司的串口网关设备。 Advantech B+B SmartWorx MESR901固件1.5.2及之前的版本中存在安全漏洞。攻击者可利用该漏洞拦截请求,绕过身份验证,获取Web页面的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A