Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In GFOS Workforce Management 4.8.272.1, the login page of application is prone to authentication bypass, allowing anyone (who knows a user's credentials except the password) to get access to an account. This occurs because of JSESSIONID mismanagement.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
N/A
Vulnerability Title
Mitre Corporation Gfos Workforce Management 授权问题漏洞
Vulnerability Description
Mitre Corporation Gfos Workforce Management是美国Mitre Corporation的一个劳动力管理系统。 Mitre Corporation GFOS Workforce Management 4.8.272.1 中存在安全漏洞,该漏洞源于JSESSIONID 管理不善。应用程序的登录页面容易绕过身份验证,并允许任何人(知道除密码之外的用户凭据的人)访问帐户。
CVSS Information
N/A
Vulnerability Type
N/A