Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On Appear TV XC5000 and XC5100 devices with firmware 3.26.217, it is possible to read OS files with a specially crafted HTTP request (such as GET /../../../../../../../../../../../../etc/passwd) to the web server (fuzzd/0.1.1) running the Maintenance Center on port TCP/8088. This can lead to full compromise of the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Appear TV XC5000和XC5100 安全漏洞
Vulnerability Description
Appear TV XC5000和XC5100都是挪威AppearTV公司的多功能性运营商级广播设备。 使用3.26.217版本固件的Appear TV XC5000和XC5100中存在安全漏洞。攻击者可通过向在TCP/8088端口上运行Maintenance Center的Web服务器发送特制的HTTP请求(例如:GET /../../../../../../../../../../../../etc/passwd)利用该漏洞读取操作系统文件,完全控制设备。
CVSS Information
N/A
Vulnerability Type
N/A