Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The information disclosure can be triggered by leveraging a memory leak affecting the web server. A remote unauthenticated attacker can exploit this vulnerability in order to leak valid authentication tokens from the process memory associated to users currently logged to the system and bypass the authentication mechanism.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
Vulnerability Type
缓冲区上溢读取
Vulnerability Title
Nozomi Networks TCP/IP Gateway 安全漏洞
Vulnerability Description
Nozomi Networks TCP/IP Gateway是美国Nozomi Networks公司的一款网关程序。 Nozomi Networks TCP/IP Gateway 12h版本存在安全漏洞,该漏洞源于存在缓冲区过度读取,会导致远程攻击者获取认证令牌并绕过认证。
CVSS Information
N/A
Vulnerability Type
N/A