Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Server-Side Request Forgery (SSRF) in ControlID iDSecure On-premises
Vulnerability Description
ControlID iDSecure On-premises versions 4.7.48.0 and prior are vulnerable to a server-side request forgery vulnerability which could allow an unauthenticated attacker to retrieve information from other servers.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Control iD iDSecure On-premises 代码问题漏洞
Vulnerability Description
Control iD iDSecure On-premises是巴西Control iD公司的一款访问控制软件,用于管理人员和车辆的进出。 Control iD iDSecure On-premises 4.7.48.0及之前版本存在代码问题漏洞,该漏洞源于服务端请求伪造,可能导致未经验证的攻击者从其他服务器检索信息。
CVSS Information
N/A
Vulnerability Type
N/A