Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in SquareBox CatDV Server through 9.2. An attacker can invoke sensitive RMI methods such as getConnections without authentication, the results of which can be used to generate valid authentication tokens. These tokens can then be used to invoke administrative tasks within the application, such as disclosing password hashes.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SquareBox CatDV Server 访问控制错误漏洞
Vulnerability Description
Square Box Systems SquareBox CatDV Server是美国 (Square Box Systems)公司的一个应用软件。提供一个敏捷的媒体管理和工作流程编排平台。 SquareBox CatDV Server through 9.2 存在安全漏洞,攻击者可利用该漏洞可以在不进行身份验证的情况下调用敏感的RMI方法,生成有效的身份验证令牌。
CVSS Information
N/A
Vulnerability Type
N/A