Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multisuns EasyLog web+ - Command Injection
Vulnerability Description
Multisuns EasyLog web+ has a code injection vulnerability. An unauthenticated remote attacker can exploit this vulnerability to inject code and access the system to perform arbitrary system operations or disrupt service.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Multisuns EasyLog web+ 安全漏洞
Vulnerability Description
Multisuns EasyLog web+是中国华鼎(Multisuns)公司的一款无人值守多回路数位电话录音系统。 Multisuns EasyLog web+ v1.13.2.8版本存在安全漏洞,远程攻击者利用该漏洞可以入代码并访问系统以执行任意系统操作或中断服务。
CVSS Information
N/A
Vulnerability Type
N/A