Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
pihome-shc PiHome Role-Based Access Control user_accounts.php authorization
Vulnerability Description
A vulnerability classified as critical has been found in pihome-shc PiHome 2.0. This affects an unknown part of the file /user_accounts.php?uid of the component Role-Based Access Control. The manipulation leads to missing authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
授权机制缺失
Vulnerability Title
PiHome 安全漏洞
Vulnerability Description
PiHome是PiHomeHVAC个人开发者的一个家庭自动化系统。 PiHome 2.0版本存在安全漏洞,该漏洞源于/user_accounts.php?uid包含一个缺少授权漏洞。
CVSS Information
N/A
Vulnerability Type
N/A