Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Smart VPN 1.1.3.0 Denial of Service via Search
Vulnerability Description
Smart VPN 1.1.3.0 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input through the search interface. Attackers can paste a buffer of 2100 characters into the top right search bar to trigger an unhandled exception that crashes the application.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
使用外部可控制的输入来选择类或代码(不安全的反射)
Vulnerability Title
Smart VPN 安全漏洞
Vulnerability Description
Smart VPN是Smart VPN公司的一款代理软件。 Smart VPN 1.1.3.0版本存在安全漏洞,该漏洞源于搜索接口未正确处理超大输入,可能导致本地攻击者通过提交超大输入使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A