Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2024-38468

Disclosure Date: June 16, 2024 (last updated August 08, 2024)
Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword API.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-38466

Disclosure Date: June 16, 2024 (last updated August 08, 2024)
Shenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-38465

Disclosure Date: June 16, 2024 (last updated August 08, 2024)
Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus error.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0