Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in genua genugate before 9.0 Z p19, 9.1.x through 9.6.x before 9.6 p7, and 10.x before 10.1 p4. The Web Interfaces (Admin, Userweb, Sidechannel) can use different methods to perform the authentication of a user. A specific authentication method during login does not check the provided data (when a certain manipulation occurs) and returns OK for any authentication request. This allows an attacker to login to the admin panel as a user of his choice, e.g., the root user (with highest privileges) or even a non-existing user.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Genua high-resistance-firewall-genugate 访问控制错误漏洞
Vulnerability Description
Genua high-resistance-firewall-genugate是德国 (Genua)公司的一个应用软件。提供一个网络防护功能 Genua high-resistance-firewall-genugate 存在访问控制错误漏洞,该漏洞源于在登录期间,身份验证方法不检查提供的数据并对任何身份验证请求返回OK。这允许攻击者以自己选择的用户登录到管理面板,例如,root用户(具有最高权限),甚至是一个不存在的用户。以下产品和版本受到影响:genua genugate before 9.0 Z p
CVSS Information
N/A
Vulnerability Type
N/A