Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
JNC|IAQS and I6 - Client-Side Enforcement of Server-Side Security
Vulnerability Description
IAQS and I6 developed by JNC has a Client-Side Enforcement of Server-Side Security vulnerability, allowing unauthenticated remote attackers to gain administrator privileges by manipulating the web front-end.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用客户端的认证机制
Vulnerability Title
JNC IAQS和JNC I6 安全漏洞
Vulnerability Description
JNC IAQS和JNC I6都是中国台湾铭祥(JNC)公司的产品。JNC IAQS是一款智能室内空气质量监测与管理系统。JNC I6是一款物联网网关记录器。 JNC IAQS和JNC I6 存在安全漏洞,该漏洞源于客户端强制执行服务器端安全,可能导致未经身份验证的远程攻击者获得管理员权限。
CVSS Information
N/A
Vulnerability Type
N/A