Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Across DR-810 ROM-0 Unauthenticated File Disclosure
Vulnerability Description
Across DR-810 contains an unauthenticated file disclosure vulnerability that allows remote attackers to download the rom-0 backup file containing sensitive information by sending a simple GET request. Attackers can access the rom-0 endpoint without authentication to retrieve and decompress the backup file, exposing router passwords and other sensitive configuration data.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
文件和路径信息暴露
Vulnerability Title
Across DR-810 安全漏洞
Vulnerability Description
Across DR-810是Across公司的一款用于文档处理与翻译流程自动化的企业级软件系统。 Across DR-810存在安全漏洞,该漏洞源于访问控制不当,可能导致未经身份验证的文件泄露。
CVSS Information
N/A
Vulnerability Type
N/A