Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Chcnav - P5E GNSS Authentication bypass
Vulnerability Description
The server checks the user's cookie in a non-standard way, and a value is entered in the cookie value name of the status and its value is set to true to bypass the identification with the system using a username and password.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
使用候选路径或通道进行的认证绕过
Vulnerability Title
Chcnav P5E GNSS 授权问题漏洞
Vulnerability Description
Chcnav P5E GNSS是Chcnav公司的全球定位系统。 Chcnav P5E GNSS 存在安全漏洞,该漏洞源于检查用户cookie的方式错误,攻击者利用该漏洞可绕过使用用户名和密码的系统识别。
CVSS Information
N/A
Vulnerability Type
N/A