Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Authentication Vulnerability in Meon KYC solutions
Vulnerability Description
This vulnerability exists in Meon KYC solutions due to improper handling of access and refresh tokens in certain API endpoints of authentication process. A remote attacker could exploit this vulnerability by intercepting and manipulating the responses through API request body leading to unauthorized access of other user accounts.
CVSS Information
N/A
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
Meon KYC 授权问题漏洞
Vulnerability Description
Meon KYC是印度Meon公司的一个解决方案。 Meon KYC存在授权问题漏洞,该漏洞源于认证过程中某些API端点对访问和刷新令牌处理不当,可能导致未经授权访问其他用户账户。
CVSS Information
N/A
Vulnerability Type
N/A