Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable privilege escalation vulnerability exists in the WebPro functionality of Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices. A specially crafted HTTP POST can cause privilege escalation resulting in a higher privileged account, including an undocumented developer level of access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款NEC产品安全漏洞
Vulnerability Description
NEC SV9100等都是日本电气(NEC)公司的一套统一通信解决方案。 多款NEC产品中的WebPro功能存在安全漏洞。攻击者可借助特制的HTTP POST利用该漏洞提升权限。以下产品及版本受到影响:NEC SV8100;SV9100;SL1100;SL2100。
CVSS Information
N/A
Vulnerability Type
N/A