Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OTP Bypass Vulnerability
Vulnerability Description
This vulnerability exists in Apex Softcell LD DP Back Office due to improper implementation of OTP validation mechanism in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by providing arbitrary OTP value for authentication and subsequently changing its API response. Successful exploitation of this vulnerability could allow the attacker to bypass OTP verification for other user accounts.
CVSS Information
N/A
Vulnerability Type
使用假设不可变数据进行的认证绕过
Vulnerability Title
Apex Softcell LD DP Back Office 安全漏洞
Vulnerability Description
Apex Softcell LD DP Back Office是Apex Softcell公司的一个应用程序。 Apex Softcell LD DP Back Office存在安全漏洞,该漏洞源于某些 API 端点中 OTP 验证机制实施不当。
CVSS Information
N/A
Vulnerability Type
N/A