漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Cleartext Storage of Sensitive Information (CWE-312) in the Command Centre Mobile Client on Android and iOS could allow an attacker with access to a logged-in Operator's mobile device to extract the session token and exploit access for a limited duration. This issue affects Command Centre Mobile Client versions prior to 9.40.123.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
敏感数据的明文存储
Vulnerability Title
Gallagher Command Centre Mobile Client 安全漏洞
Vulnerability Description
Gallagher Command Centre Mobile Client是新西兰Gallagher公司的一款移动应用程序。 Gallagher Command Centre Mobile Client 9.40.123之前版本存在安全漏洞,该漏洞源于Android和iOS平台上敏感信息明文存储,可能导致攻击者访问已登录操作员移动设备以提取会话令牌并利用有限时长的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A