Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PTC Vuforia Studio Improper Authorization
Vulnerability Description
By changing the filename parameter in the request, an attacker could delete any file with the permissions of the Vuforia server account.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:N/A:H
Vulnerability Type
授权机制不恰当
Vulnerability Title
PTC Vuforia Studio 授权问题漏洞
Vulnerability Description
PTC Vuforia Studio是PTC公司的一种易于使用的 Web 原生工具,用于创作领域和任务特定的体验。这些体验通过 2D、3D 和增强现实提供数字和物理产品数据、仪表板和警报的集成视图。 PTC Vuforia Studio存在授权问题漏洞。攻击者利用该漏洞通过更改请求中的filename参数,可以删除具有Vuforia服务器帐户权限的任何文件。
CVSS Information
N/A
Vulnerability Type
N/A