Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NASCENT RemKon Device Manager 命令注入漏洞
Vulnerability Description
NASCENT RemKon Device Manager是美国NASCENT公司的一个部署在物流中心的 Web 应用程序,用作管理自动门系统 (AGS) 和其他 Nascent 产品的各种设置和配置的单一管理平台。 NASCENT RemKon Device Manager 4.0.0.0版本存在安全漏洞,该漏洞源于图像上传功能中的命令注入漏洞允许攻击者以root身份通过"assets/index.php"的文件名参数中的shell元字符执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A