Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reflected Cross Site Scripting (XSS) in VIDEOJET multi 4000
Vulnerability Description
An error in the URL handler of the VIDEOJET multi 4000 may lead to a reflected cross site scripting (XSS) in the web-based interface. An attacker with knowledge of the encoder address can send a crafted link to a user, which will execute JavaScript code in the context of the user.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Bosch VIDEOJET multi 4000 跨站脚本漏洞
Vulnerability Description
Bosch VIDEOJET multi 4000是德国博世(Bosch)公司的一款 16 通道 CCTV 视频编码器。可为安全摄像头系统提供一流的 IP 视频性能。 Bosch VIDEOJET multi 4000版本存在安全漏洞,该漏洞源于URL处理程序中存在错误,可能会导致基于Web的界面中出现反射型跨站脚本(XSS),知道编码器地址的攻击者可以向用户发送精心设计的链接,该链接将在用户的上下文中执行JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A