Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rotem Dynamics Rotem CRM OTP URI Interface information exposure
Vulnerability Description
A vulnerability classified as problematic has been found in Rotem Dynamics Rotem CRM up to 20230729. This affects an unknown part of the file /LandingPages/api/otp/send?id=[ID][ampersand]method=sms of the component OTP URI Interface. The manipulation leads to information exposure through discrepancy. It is possible to initiate the attack remotely. The identifier VDB-233253 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过差异性导致的信息暴露
Vulnerability Title
Rotem Dynamics Rotem CRM 安全漏洞
Vulnerability Description
Rotem Dynamics Rotem CRM是Rotem Dynamics公司的一个客户关系管理系统。 Rotem Dynamics Rotem CRM 20230729及之前版本存在安全漏洞,该漏洞源于文件/LandingPages/api/otp/send?id=[ID][ampersand]method=sms存在问题,会导致信息因差异而暴露。
CVSS Information
N/A
Vulnerability Type
N/A