Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be retrieved from any folder accessible to the account assigned to the website’s application pool.
CVSS Information
N/A
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
Siemens syngo Dynamics 安全漏洞
Vulnerability Description
Siemens syngo Dynamics是德国西门子(Siemens)公司的一个心血管成像和信息解决方案。旨在成为完整心血管服务的集中数字中心。 Siemens syngo Dynamics VA40G HF01之前版本存在安全漏洞,该漏洞源于使用具有不当读取访问控制的操作托管Web服务,可能允许从分配给网站应用程序池的帐户可访问的任何文件夹中检索文件。
CVSS Information
N/A
Vulnerability Type
N/A