Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ZGR TPS200 NG Missing Reference to Active Allocated Resource
Vulnerability Description
In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process does not perform any type of restriction. This allows an attacker to modify it and re-upload it via web with malicious modifications, rendering the device unusable.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Zigor Corporación ZGR TPS200 NG 代码问题漏洞
Vulnerability Description
Zigor Corporación ZGR TPS200 NG是西班牙Zigor Corporación公司的一个用于电池充电器的整流器。能够管理用于工业应用的密封铅酸或锂电池、用于变电站的远程控制和远程控制手机以及需要安全远程供电的应用。 Zigor Corporación ZGR TPS200 NG 2.00 固件版本和 1.01 硬件版本存在安全漏洞,该漏洞源于固件上传过程不做任何类型的限制,攻击者利用该漏洞可以修改它并通过恶意修改通过网络重新上传它,从而使设备无法使用。
CVSS Information
N/A
Vulnerability Type
N/A