Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Logic Flaw vulnerability exists in i3 International Inc Annexxus Camera V5.2.0 build 150317 (Ax46), V5.0.9 build 151106 (Ax68), and V5.0.9 build 150615 (Ax78) due to a failure to allow the creation of more than one administrator account; however, this can be bypassed by parameter maniulation using PUT and DELETE and by calling the 'UserPermission' endpoint with the ID of created account and set it to 'admin' userType, successfully adding a second administrative account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
i3 International Annexxus Cameras 安全漏洞
Vulnerability Description
i3 International Annexxus Cameras是加拿大i3 International公司的一款摄像机。 i3 International Annexxus Cameras Ax-n 5.2.0存在安全漏洞,攻击者可以通过使用 PUT 和 DELETE 的参数操作以及使用创建帐户的 ID 调用“UserPermission”端点并将其设置为“admin”用户类型来绕过,从而成功添加了第二个管理帐户。
CVSS Information
N/A
Vulnerability Type
N/A