Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Synthesis_image_system
(Guoxinled)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-06-16 | CVE-2024-38467 | Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized user information retrieval via the queryUser API. | Synthesis_image_system | N/A | ||
| 2024-06-16 | CVE-2024-38466 | Shenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password. | Synthesis_image_system | 9.8 | ||
| 2024-06-16 | CVE-2024-38465 | Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus error. | Synthesis_image_system | 5.3 | ||
| 2024-06-16 | CVE-2024-38468 | Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword API. | Synthesis_image_system | 9.8 |