Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XProtect MIP API Missing Authorization
Vulnerability Description
Missing Authorization vulnerability in Milestone Systems XProtect VMS allows users with read-only access to Management Server to have full read/write access to MIP Webhooks API.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
授权机制缺失
Vulnerability Title
Milestone Systems XProtect VMS 安全漏洞
Vulnerability Description
Milestone Systems XProtect VMS是美国Milestone Systems公司的一个视频管理软件。 Milestone Systems XProtect VMS存在安全漏洞,该漏洞源于授权缺失,可能导致只读用户获得对MIP Webhooks API的完全读写访问。
CVSS Information
N/A
Vulnerability Type
N/A