Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unauthenticated SQL-injection in password field
Vulnerability Description
This vulnerability allows malicious actors to gain unauthorized access to the Zenitel ICX500 and ICX510 Gateway Billing Admin endpoint, enabling them to read the entire contents of the Billing Admin database.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Zenitel ICX500和Zenitel ICX510 安全漏洞
Vulnerability Description
Zenitel ICX500和Zenitel ICX510都是挪威Zenitel公司的一款通信与控制平台。 Zenitel ICX500和Zenitel ICX510存在安全漏洞,该漏洞源于恶意行为者可未经授权访问Billing Admin端点,可能导致读取数据库全部内容。
CVSS Information
N/A
Vulnerability Type
N/A