Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Advantech iView, versions 5.6 and prior, has an improper authentication for critical function (CWE-306) issue. Successful exploitation of this vulnerability may allow an attacker to obtain the information of the user table, including the administrator credentials in plain text. An attacker may also delete the administrator account.
CVSS Information
N/A
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Advantech iView 访问控制错误漏洞
Vulnerability Description
Advantech Iview是中国Advantech公司的一个基于简单网络协议(SNMP)来对 B + B SmartWorx 设备进行管理的软件。 Advantech iView 5.6及之前版本中存在访问控制错误漏洞。远程攻击者可利用该漏洞获取用户表的信息,包括纯文本格式的管理员凭据,或删除管理员帐户。
CVSS Information
N/A
Vulnerability Type
N/A