Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Hard-coded credentials in iZZi connect application
Vulnerability Description
INPRAX "iZZi connect" application on Android contains hard-coded MQTT queue credentials. The same MQTT queue is used by corresponding physical recuperation devices. Exploiting this vulnerability could potentially allow unauthorized access to manage and read parameters of the recuperation unit "reQnet iZZi".This issue affects "iZZi connect" application versions before 2024010401.
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
INPRAX iZZi 安全漏洞
Vulnerability Description
INPRAX iZZi是INPRAX公司的一个应用。 INPRAX iZZi 2024010401之前版本存在安全漏洞,该漏洞源于包含硬编码的队列凭据,可能会允许未经授权的访问来管理和读取恢复单元参数。
CVSS Information
N/A
Vulnerability Type
N/A