Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Italtel NetMatch-S CI 5.2.0-20211008 has incorrect Access Control under NMSCI-WebGui/advancedsettings.jsp and NMSCIWebGui/SaveFileUploader. By not verifying permissions for access to resources, it allows an attacker to view pages that are not allowed, and modify the system configuration, bypassing all controls (without checking for user identity).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Italtel NetMatch-S CI 安全漏洞
Vulnerability Description
Italtel NetMatch-S CI是Italtel公司的第一个“云内”SBC,根据新兴的 IT 实践和电信规范 (NFV),专为在数据中心/云环境中部署而设计。 Italtel NetMatch-S CI 5.2.0-20211008版本存在安全漏洞,该漏洞源于访问控制不当,允许攻击者绕过所有控制查看不允许的页面并修改系统配置。
CVSS Information
N/A
Vulnerability Type
N/A