Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Solstice-Pod up to 5.0.2 WEBRTC server mishandles the format-string specifiers %x; %p; %c and %s in the screen_key, display_name, browser_name, and operation_system parameter during the authentication process. This may crash the server and force Solstice-Pod to reboot, which leads to a denial of service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mersive Technologies Mersive Solstice-Pod 授权问题漏洞
Vulnerability Description
Mersive Technologies Mersive Solstice-Pod是美国Mersive Technologies公司的一款应用于会议屏幕共享的软件。 Solstice-Pod 5.0.2 版本存在安全漏洞,该漏洞源于错误处理格式字符串说明符%x,%p, %c, %s,在身份验证过程中显示名称、浏览器名称和操作系统参数。攻击者可利用该漏洞导致服务器崩溃,从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A