Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MGT-COMMERCE CloudPanel Shared Certificate
Vulnerability Description
MGT-COMMERCE CloudPanel ships with a static SSL certificate to encrypt communications to the administrative interface, shared across every installation of CloudPanel. This behavior was observed in version 2.2.0. There has been no indication from the vendor this has been addressed in version 2.2.1.
CVSS Information
N/A
Vulnerability Type
使用硬编码的密码学密钥
Vulnerability Title
MGT-COMMERCE CloudPanel 信任管理问题漏洞
Vulnerability Description
MGT-COMMERCE CloudPanel是MGT-COMMERCE开源的一种免费解决方案。旨在减轻管理自托管 Linux 服务器的负担。 MGT-COMMERCE CloudPanel 2.2.0版本存在安全漏洞,该漏洞源于该系统附带一个静态 SSL 证书,用于加密与管理界面的通信,但是在 CloudPanel 的每个安装中共享。
CVSS Information
N/A
Vulnerability Type
N/A