Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Due to the lack of adequately implemented access-control rules, all versions Kingspan TMS300 CS are vulnerable to an attacker viewing and modifying the application settings without authenticating by accessing a specific uniform resource locator (URL) on the webserver.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
认证机制不恰当
Vulnerability Title
Kingspan TMS 300 CS 授权问题漏洞
Vulnerability Description
Kingspan TMS 300 CS是Kingspan公司的水箱管理系统。 Kingspan TMS 300 CS存在授权问题漏洞,该漏洞源于其缺乏充分的访问控制规则,导致攻击者可以通过访问web服务器上的特定统一资源定位器(URL)来查看和修改应用程序设置,而无需进行身份验证。
CVSS Information
N/A
Vulnerability Type
N/A