Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A misconfiguration vulnerability exists in the urvpn_client functionality of Milesight UR32L v32.3.0.5. A specially-crafted man-in-the-middle attack can lead to increased privileges. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
证书验证不恰当
Vulnerability Title
Milesight UR32L 信任管理问题漏洞
Vulnerability Description
Milesight UR32L是中国星纵物联(Milesight)公司的一个4G工业路由器。 Milesight UR32L v32.3.0.5版本存在信任管理问题漏洞。攻击者利用该漏洞执行中间人攻击,从而导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A