CVE-2024-56898 PoC — Geovision GV-ASWeb 安全漏洞

Source

https://github.com/DRAGOWN/CVE-2024-56898

Associated Vulnerability

Title:Geovision GV-ASWeb 安全漏洞 (CVE-2024-56898)
Description:Geovision GV-ASWeb是中国奇偶（Geovision）公司的一个基于 Web 的软件，用于远程访问和配置 GV-ASManager 的数据库。 Geovision GV-ASWeb 6.1.0.0及之前版本存在安全漏洞，该漏洞源于存在错误访问控制，允许未经授权的低级权限攻击者通过提供精心设计的 HTTP 请求来管理和创建新的用户帐户。

Description

CVE-2024-56898 - Broken access control vulnerability in GeoVision ASManager web application version v6.0.1.0 or less.

Readme

# CVE-2024-56898
CVE-2024-56898 - Broken access control vulnerability in GeoVision ASManager web application version v6.0.1.0 or less.

File Snapshot


 [4.0K]  /data/pocs/9e41734a5adef6a94d86fa43ace545ef43e88588
└── [ 136]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!