Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CHANGING Inc. NHIServiSignAdapter Windows Versions - Information Leakage -2
Vulnerability Description
The digest generation function of NHIServiSignAdapter has not been verified for source file path, which leads to the SMB request being redirected to a malicious host, resulting in the leakage of user's credential.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
全景 NHIServiSignAdapter 输入验证错误漏洞
Vulnerability Description
全景 NHIServiSignAdapter是中国全景公司的一个用于全景监控设备的安控元件。 NHIServiSignAdapter 存在安全漏洞,该漏洞源于摘要生成函数未验证源文件路径,导致SMB请求被重定向到恶意主机,导致用户凭证泄漏。
CVSS Information
N/A
Vulnerability Type
N/A