Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A path traversal vulnerability in FastX3 thru 3.3.67 allows an unauthenticated attacker to read arbitrary files on the server. By leveraging this vulnerability, it is possible to access the application's configuration files, which contain the secret key used to sign JSON Web Tokens as well as existing JTIs. With this information, an attacker can forge valid JWTs, impersonate the root user, and achieve remote code execution in privileged context via authenticated endpoints.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
StarNet FastX 安全漏洞
Vulnerability Description
StarNet FastX是美国StarNet公司的一款远程桌面软件。 StarNet FastX 3.3.67及之前版本存在安全漏洞,该漏洞源于未经验证的攻击者可读取服务器上的任意文件,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A