N/A

Anviz Global M3 Outdoor RFID Access Control executes any command received from any source. No authentication/encryption is done. Attackers can fully interact with the device: for example, send the "open door" command, download the users list (which includes RFID codes and passcodes in cleartext), or update/create users. The same attack can be executed on a local network and over the internet (if the device is exposed on a public IP address).

N/A

N/A

Anviz M3 RFID 访问控制错误漏洞

Anviz M3 RFID是中国Anviz公司的一款门禁访问控制器。 Anviz M3 RFID中存在安全漏洞。攻击者可利用该漏洞绕过访问控制并泄露或修改私人信息。

N/A

N/A