Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SiPass integrated (All versions < V2.90.3.8). Affected server applications improperly check the size of data packets received for the configuration client login, causing a stack-based buffer overflow. This could allow an unauthenticated remote attacker to crash the server application, creating a denial of service condition.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Siemens SiPass Integrated 缓冲区错误漏洞
Vulnerability Description
Siemens SiPass Integrated是德国西门子(Siemens)公司的一个功能强大且极其灵活的门禁控制系统。 Siemens SiPass Integrated V2.90.3.8 版本之前存在安全漏洞,该漏洞源于受影响的服务器应用程序不正确地检查配置客户端登录所接收的数据包的大小,从而导致基于堆栈的缓冲区溢出。这可能允许未经身份验证的远程攻击者使服务器应用程序崩溃,从而造成拒绝服务情况。
CVSS Information
N/A
Vulnerability Type
N/A