Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Automated Logic WebCTRL and Carrier i-Vu Session Fixation
Vulnerability Description
Storing Passwords in a Recoverable Format vulnerability in Automated Logic WebCTRL on Windows, Carrier i-Vu on Windows. Storing Passwords in a Recoverable Format vulnerability (CWE-257) in the Web session management component allows an attacker to access stored passwords in a recoverable format which makes them subject to password reuse attacks by malicious users.This issue affects WebCTRL: from 6.0 through 9.0; i-Vu: from 6.0 through 9.0.
CVSS Information
N/A
Vulnerability Type
以可恢复格式存储口令
Vulnerability Title
Carrier i-Vu和Carrier Automated Logic WebCTRL 安全漏洞
Vulnerability Description
Carrier i-Vu和Carrier Automated Logic WebCTRL都是美国Carrier公司的产品。Carrier i-Vu是一个楼宇管理系统平台。Carrier Automated Logic WebCTRL是一个楼宇自动化系统。 Carrier i-Vu和Carrier Automated Logic WebCTRL 6.0版本至9.0版本存在安全漏洞,该漏洞源于Web会话管理组件以可恢复格式存储密码,可能导致密码重用攻击。
CVSS Information
N/A
Vulnerability Type
N/A