漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Insecure File Generation Based on User Input in Enphase IQ Gateway version 4.x to 8.x and < 8.2.4225
Vulnerability Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability through a url parameter in Enphase IQ Gateway (formerly known as Envoy) allows File Manipulation. The endpoint requires authentication.This issue affects Envoy: from 4.x to 8.0 and < 8.2.4225.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Enphase Envoy 安全漏洞
Vulnerability Description
Enphase Envoy是美国Enphase公司的一款用于连接智能家居设备的网关设备。 Enphase Envoy 4.x版本至8.2.4225之前版本存在安全漏洞,该漏洞源于包含一个路径遍历漏洞。
CVSS Information
N/A
Vulnerability Type
N/A