Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The HTTP service (default port 5401/tcp) of the SiVMS/SiNVR Video Server contains an authentication bypass vulnerability, even when properly configured with enforced authentication. A remote attacker with network access to the Video Server could exploit this vulnerability to read the SiVMS/SiNVR users database, including the passwords of all users in obfuscated cleartext.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Siemens SiNVR 3 Central Control Server 访问控制错误漏洞
Vulnerability Description
Siemens SiNVR 3 Central Control Server(CCS)是德国西门子(Siemens)公司的一款用于SiNVR 3视频监控系统的中央控制服务器。 Siemens SiNVR 3 Central Control Server和SiNVR 3 Video Server中存在访问控制错误漏洞。远程攻击者可利用该漏洞读取SiNVR用户数据库。
CVSS Information
N/A
Vulnerability Type
N/A