Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthenticated username enumeration through the VAPIX Device Configuration SSH Management API.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过差异性导致的信息暴露
Vulnerability Title
AXIS OS 安全漏洞
Vulnerability Description
AXIS OS是瑞典安讯士(AXIS)公司的一种边缘设备操作系统。 AXIS OS存在安全漏洞,该漏洞源于允许攻击者通过 VAPIX Device Configuration SSH Management API 获取系统用户名。
CVSS Information
N/A
Vulnerability Type
N/A