Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Columbia Weather Systems MicroServer Cleartext Storage in a File or on Disk
Vulnerability Description
MicroServer copies parts of the system firmware to an unencrypted external SD card on boot, which contains user and vendor secrets. An attacker can utilize these plaintext secrets to modify the vendor firmware, or gain admin access to the web portal.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
在文件或磁盘上的明文存储
Vulnerability Title
Columbia Weather Systems MicroServer 安全漏洞
Vulnerability Description
Columbia Weather Systems MicroServer是美国Columbia Weather Systems公司的一个气象数据服务器。 Columbia Weather Systems MicroServer存在安全漏洞,该漏洞源于系统固件部分内容被复制至未加密的外部SD卡,可能导致管理员访问权限获取。
CVSS Information
N/A
Vulnerability Type
N/A