Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SinoTrack GPS Receiver Weak Authentication
Vulnerability Description
User names used to access the web management interface are limited to the device identifier, which is a numerical identifier no more than 10 digits. A malicious actor can enumerate potential targets by incrementing or decrementing from known identifiers or through enumerating random digit sequences.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Vulnerability Type
响应差异性信息暴露
Vulnerability Title
SinoTrack IOT PC Platform 安全漏洞
Vulnerability Description
SinoTrack IOT PC Platform是中国SinoTrack公司的一款定位系统。 SinoTrack IOT PC Platform存在安全漏洞,该漏洞源于用户名限制为设备标识符,可能导致恶意行为者枚举潜在目标。
CVSS Information
N/A
Vulnerability Type
N/A