Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Quanta Computer|QOCA aim AI Medical Cloud Platform - Arbitrary File Upload
Vulnerability Description
QOCA aim AI Medical Cloud Platform developed by Quanta Computer has an Arbitrary File Upload vulnerability, allowing authenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Quanta QOCA aim AI Medical Cloud Platform 代码问题漏洞
Vulnerability Description
Quanta QOCA aim AI Medical Cloud Platform是中国台湾广达(Quanta)公司的一个人工智能医疗云计算整合平台,提供全面的AI模型开发工具,涵盖从AI开发到临床应用的全过程。 Quanta QOCA aim AI Medical Cloud Platform存在代码问题漏洞,该漏洞源于任意文件上传,可能导致经过身份验证的远程攻击者上传并执行WebShell后门,从而在服务器上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A