Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A misconfiguration in Web-Sesame 2020.1.1.3375 allows an unauthenticated attacker to download the source code of the application, facilitating its comprehension (code review). Specifically, JavaScript source maps were inadvertently included in the production Webpack configuration. These maps contain sources used to generate the bundle, configuration settings (e.g., API keys), and developers' comments.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Web-Sesame 安全漏洞
Vulnerability Description
TIL Web-Sesame是法国Avaya(TIL)公司的一个可对建筑物的所有信息和电子控制的设备进行统一监控管理的设备。该设备可连接多个监控终端进行管理。 Web-Sesame 2020.1.1.3375 存在安全漏洞,攻击者可利用该漏洞下载应用程序的源代码。
CVSS Information
N/A
Vulnerability Type
N/A