Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to endpoints in the application.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Marval MSM 安全漏洞
Vulnerability Description
Marval MSM是英国Marval公司的一个创新的 IT 服务管理软件。 Marval MSM存在安全漏洞,该漏洞源于存在带有默认凭据的系统账户,允许攻击者登录并创建有效会话。受影响的产品和版本:Marval MSM 14.19.0.12476及之前版本,15.0版本。
CVSS Information
N/A
Vulnerability Type
N/A