Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing Authentication for Critical Function in Snap One OVRC cloud
Vulnerability Description
A vulnerability exists in Snap One OVRC cloud where an attacker can impersonate a Hub device and send requests to claim and unclaim devices. The attacker only needs to provide the MAC address of the targeted device and can make a request to unclaim it from its original connection and make a request to claim it.
CVSS Information
N/A
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Snap One OvrC 安全漏洞
Vulnerability Description
Snap One OvrC是美国Snap One公司的一款基于云的免费远程管理和监控平台。 Snap One OvrC 7.3之前版本存在安全漏洞,该漏洞源于攻击者可以冒充Hub设备并发送认领和取消认领设备的请求,攻击者只需提供目标设备的MAC地址,就可以请求从其原始连接中取消认领并请求认领它。
CVSS Information
N/A
Vulnerability Type
N/A