Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BKG Professional NtripCaster 2.0.39 allows querying information over the UDP protocol without authentication. The NTRIP sourcetable is typically quite long (tens of kBs) and can be requested with a packet of only 30 bytes. This presents a vector that can be used for UDP amplification attacks. Normally, only authenticated streaming data will be provided over UDP and not the sourcetable.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BKG Professional NtripCaster 访问控制错误漏洞
Vulnerability Description
BKG Professional NtripCaster是德国Federal Agency for Cartography and Geodesy组织的一个应用程序。允许通过互联网传播 GNSS 实时数据流。 BKG Professional NtripCaster 2.0.39版本存在安全漏洞,该漏洞源于允许通过UDP协议查询信息而无需身份验证。
CVSS Information
N/A
Vulnerability Type
N/A