Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Yellowbrik PEC-1864 authentication bypass
Vulnerability Description
Yellobrik PEC-1864 implements authentication checks via javascript in the frontend interface. When the device can be accessed over the network an attacker could bypass authentication. This would allow an attacker to : - Change the password, resulting in a DOS of the users - Change the streaming source, compromising the integrity of the stream - Change the streaming destination, compromising the confidentiality of the stream This issue affects Yellowbrik: PEC 1864. No patch has been issued by the manufacturer as this model was discontinued.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
服务端安全的客户端实施
Vulnerability Title
LYNX Technik Yellobrik PEC-1864 安全漏洞
Vulnerability Description
LYNX Technik Yellobrik PEC-1864是LYNX Technik公司的一款多功能、紧凑的 SDI/HDMI H.264 流媒体和记录器。 LYNX Technik Yellobrik PEC-1864版本存在安全漏洞,该漏洞源于通过前端界面中的javascript实现身份验证检查,当可以通过网络访问设备时,攻击者可以绕过身份验证。
CVSS Information
N/A
Vulnerability Type
N/A