Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Channel Accessible by Non-Endpoint in CBOT's Chatbot
Vulnerability Description
Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in CBOT Chatbot allows Adversary in the Middle (AiTM).This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
通信信道中传输过程中消息完整性的不正确执行
Vulnerability Title
CBOT Chatbot 安全漏洞
Vulnerability Description
CBOT Chatbot是CBOT公司的一个人工智能驱动的实时聊天解决方案。 CBOT Chatbot Core v4.0.3.4 之前版本、 Panel v4.0.3.7之前版本存在安全漏洞,该漏洞源于非端点可访问通道允许中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A