Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Automox Agent Guessable S3 Bucket Endpoint
Vulnerability Description
Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Automox Alive Automox Agent 安全特征问题漏洞
Vulnerability Description
Automox Alive Automox Agent是Automox Alive社区的一个应用软件。一个代理软件。 Automox Alive Automox Agent 31之前版本存在安全特征问题漏洞,该漏洞源于使用没有得到充分保护的S3桶端点来存储敏感文件,攻击者可利用该漏洞可能会强行使用这些端点来破坏组织的安全程序。
CVSS Information
N/A
Vulnerability Type
N/A