Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Suprema BioStar 2 Insecure Password Change
Vulnerability Description
Suprema’s BioStar 2 in version 2.9.11.6 allows users to set new password without providing the current one. Exploiting this flaw combined with other vulnerabilities can lead to unauthorized account access and potential system compromise.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
输入验证不恰当
Vulnerability Title
Suprema BioStar 安全漏洞
Vulnerability Description
Suprema BioStar是韩国Suprema公司的一个基于 Web 的开放式集成安全平台。为访问控制、考勤管理、访客管理和视频日志维护提供全面的功能。 Suprema BioStar 2 2.9.11.6版本存在安全漏洞,该漏洞源于允许用户在不提供当前密码的情况下设置新密码,可能导致未经授权的账户访问和系统泄露。
CVSS Information
N/A
Vulnerability Type
N/A