Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at /console/ConsolePage/Master.html, an attacker is able to see the markup that would be presented to an authenticated user. This is caused by the session validation occurring after the initial markup is loaded. This results in a list of unprotected API endpoints that disclose call logs, SMS logs, and user-account data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
42Gears SureMDM 信息泄露漏洞
Vulnerability Description
42Gears Mobility Systems 42Gears SureMDM是美国42Gears Mobility Systems公司的一套用于移动设备的资产管理平台。该平台主要用于监控和管理企业移动设备。 42Gears SureMDM 2018-11-27之前版本中存在信息泄露漏洞。攻击者可利用该漏洞泄露日志、SMS日志及用户账户数据。
CVSS Information
N/A
Vulnerability Type
N/A