Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Exposure of Private Personal Information to an Unauthorized Actor vulnerability on CIRCUTOR Q-SMT
Vulnerability Description
An attacker with no knowledge of the current users in the web application, could build a dictionary of potential users and check the server responses as it indicates whether or not the user is present in CIRCUTOR Q-SMT in its firmware version 1.0.4.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
侵犯隐私
Vulnerability Title
CIRCUTOR Q-SMT 安全漏洞
Vulnerability Description
CIRCUTOR Q-SMT是CIRCUTOR公司的一个工业硬件设备。 CIRCUTOR Q-SMT 1.0.4版本存在安全漏洞,该漏洞源于攻击者无需了解Web应用程序中的当前用户,便可以构建潜在用户词典并检查服务器响应。
CVSS Information
N/A
Vulnerability Type
N/A