Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Hisilicon HiIpcam V100R003 Information Disclosure via Directory Traversal
Vulnerability Description
Hisilicon HiIpcam V100R003 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by exploiting directory listing in the cgi-bin directory. Attackers can request the getadslattr.cgi endpoint to retrieve ADSL credentials and network configuration parameters including usernames, passwords, and DNS settings.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
配置文件中存储口令
Vulnerability Title
Hisilicon HiIpcam 安全漏洞
Vulnerability Description
Hisilicon HiIpcam是中国海思(Hisilicon)公司的一个IP摄像头 Hisilicon HiIpcam V100R003版本存在安全漏洞,该漏洞源于cgi-bin目录存在目录遍历,可能导致未经验证的攻击者访问敏感配置文件。
CVSS Information
N/A
Vulnerability Type
N/A