Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
4MOSAn GCB Doctor - Improper Authorization
Vulnerability Description
4MOSAn GCB Doctor’s login page has improper validation of Cookie, which allows an unauthenticated remote attacker to bypass authentication by code injection in cookie, and arbitrarily manipulate the system or interrupt services by upload and execution of arbitrary files.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
授权机制不恰当
Vulnerability Title
Radiant Tech 4Mosan Gcb Doctor 授权问题漏洞
Vulnerability Description
Radiant Tech 4Mosan Gcb Doctor(政府共通组态设定与检测)是中国睿明知通(Radiant Tech)公司的用于有效控制个人电脑遭受骇客入侵的管道,降低资安事件。 Radiant Tech 4MOSAn GCB Doctor 存在授权问题漏洞,未经身份验证的远程攻击者通过向cookie中注入代码的方式绕过身份验证,通过上传和执行任意文件来任意操纵系统或中断服务。
CVSS Information
N/A
Vulnerability Type
N/A