Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in Rebooter(WATCH BOOT nino RPC-M2C [End of Sale] all firmware versions, WATCH BOOT light RPC-M5C [End of Sale] all firmware versions, WATCH BOOT L-zero RPC-M4L [End of Sale] all firmware versions, WATCH BOOT mini RPC-M4H [End of Sale] all firmware versions, WATCH BOOT nino RPC-M2CS firmware version 1.00A to 1.00D, WATCH BOOT light RPC-M5CS firmware version 1.00A to 1.00D, WATCH BOOT L-zero RPC-M4LS firmware version 1.00A to 1.20A, and Signage Rebooter RPC-M4HSi firmware version 1.00A), PoE Rebooter(PoE BOOT nino PoE8M2 firmware version 1.00A to 1.20A), Scheduler(TIME BOOT mini RSC-MT4H [End of Sale] all firmware versions, TIME BOOT RSC-MT8F [End of Sale] all firmware versions, TIME BOOT RSC-MT8FP [End of Sale] all firmware versions, TIME BOOT mini RSC-MT4HS firmware version 1.00A to 1.10A, and TIME BOOT RSC-MT8FS firmware version 1.00A to 1.00E), and Contact Converter(POSE SE10-8A7B1 firmware version 1.00A to 1.20A) allows a remote attacker to hijack the authentication of an administrator and conduct arbitrary operations by having a user to view a specially crafted page.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款MEIKYO ELECTRIC产品跨站请求伪造漏洞
Vulnerability Description
WATCH BOOT nino RPC-M2C和WATCH BOOT light RPC-M5C都是MEIKYO ELECTRIC的产品。WATCH BOOT nino RPC-M2C是一款重启器。WATCH BOOT light RPC-M5C是一款重启器。 MEIKYO ELECTRIC 多款产品存在跨站请求伪造漏洞,该漏洞源于对 HTTP 请求来源的验证不充分。远程攻击者利用该漏洞可以欺骗受害者访问特制网页,并代表受害者在易受攻击的网站上执行任意操作。以下产品和版本受到影响:WATCH BOOT n
CVSS Information
N/A
Vulnerability Type
N/A