Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2023-38257
Vulnerability Description
Iagona ScrutisWeb versions 2.1.37 and prior are vulnerable to an insecure direct object reference vulnerability that could allow an unauthenticated user to view profile information, including user login names and encrypted passwords.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Iagona ScrutisWeb 安全漏洞
Vulnerability Description
Iagona ScrutisWeb是法国Iagona公司的一种安全解决方案。 Iagona ScrutisWeb 2.1.37版本及之前版本存在安全漏洞。攻击者利用该漏洞可以查看配置文件信息,包括用户登录名和加密密码。
CVSS Information
N/A
Vulnerability Type
N/A