Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Authentication vulnerability in Socomec Net Vision
Vulnerability Description
An incorrect authentication vulnerability has been found in Socomec Net Vision affecting version 7.20. This vulnerability allows an attacker to perform a brute force attack on the application and recover a valid session, because the application uses a five-digit integer value.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
认证机制不恰当
Vulnerability Title
Socomec Net Vision 授权问题漏洞
Vulnerability Description
Socomec Net Vision是法国溯高美索克曼(Socomec)公司的一个网络适配器。用于对单个和模块化 UPS 或并联 UPS 系统进行专业监控和远程控制。 Socomec Net Vision 7.20 版本存在授权问题漏洞,该漏洞源于应用程序使用五位整数值,允许攻击者对应用程序执行暴力攻击并恢复有效会话。
CVSS Information
N/A
Vulnerability Type
N/A