Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
4MOSAn GCB Doctor - Unrestricted Upload of File
Vulnerability Description
4MOSAn GCB Doctor’s file upload function has improper user privilege control. A remote attacker can upload arbitrary files including webshell files without authentication and execute arbitrary code in order to perform arbitrary system operations or deny of service attack.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
4MOSAn GCB Doctor 代码问题漏洞
Vulnerability Description
Radiant Tech 4Mosan Gcb Doctor(政府共通组态设定与检测)是中国睿明知通(Radiant Tech)公司的用于有效控制个人电脑遭受骇客入侵的管道,降低资安事件。 4MOSAn GCB Doctor 中存在代码问题漏洞,该漏洞源于产品未对上传文件进行权限控制。未登录的攻击者可通过该漏洞上传任意文件导致代码执行或拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A