Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper or missing access control, low privileged users can use administrative functions of the C-MOR web interface. It was found out that different functions are only available to administrative users. However, access those functions is restricted via the web application user interface and not checked on the server side. Thus, by sending corresponding HTTP requests to the web server of the C-MOR web interface, low privileged users can also use administrative functionality, for instance downloading backup files or changing configuration settings.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
za-internet C-MOR Video Surveillance 安全漏洞
Vulnerability Description
za-internet C-MOR Video Surveillance是德国za-internet公司的一个网络视频监控系统。 za-internet C-MOR Video Surveillance 5.2401版本存在安全漏洞,该漏洞源于访问控制不当或缺失,低权限用户可以使用C-MOR Web界面的管理功能。
CVSS Information
N/A
Vulnerability Type
N/A