Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Industrial Video & Control Longwatch has a Code Injection vulnerability
Vulnerability Description
A vulnerability in Longwatch devices allows unauthenticated HTTP GET requests to execute arbitrary code via an exposed endpoint, due to the absence of code signing and execution controls. Exploitation results in SYSTEM-level privileges.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Industrial Video & Control Longwatch 代码注入漏洞
Vulnerability Description
Industrial Video & Control Longwatch是美国Industrial Video & Control公司的一个工业级视频监控和管理平台。 Industrial Video & Control Longwatch存在代码注入漏洞,该漏洞源于未经验证的HTTP GET请求可通过暴露的端点执行任意代码,可能导致获取SYSTEM级别权限。
CVSS Information
N/A
Vulnerability Type
N/A