Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
UBICOD Medivision Digital Signage 1.5.1 Authorization Bypass via User Privileges
Vulnerability Description
UBICOD Medivision Digital Signage 1.5.1 contains an authorization bypass vulnerability that allows normal users to escalate privileges by manipulating the 'ft[grp]' parameter. Attackers can send a GET request to /html/user with 'ft[grp]' set to integer value '3' to gain super admin rights without authentication.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
UBICOD Medivision Digital Signage 安全漏洞
Vulnerability Description
UBICOD Medivision Digital Signage是韩国UBICOD Medivision公司的一个医疗环境数字标牌软件。 UBICOD Medivision Digital Signage 1.5.1版本存在安全漏洞,该漏洞源于ft[grp]参数存在授权绕过,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A