CNNVD-202601-3822 Information
CNNVD ID
CNNVD-202601-3822
Related CVE
- CNNVD Published: 2026-01-22
Description (Chinese)
Sangfor Operation and Maintenance Security Management System是中国深信服(Sangfor)公司的一个运维安全管理系统。 Sangfor Operation and Maintenance Security Management System 3.0.12及之前版本存在授权问题漏洞,该漏洞源于对文件/fort/login/edit_pwd_mall中参数flag的错误操作,可能导致弱密码恢复。
Description (English)
The Sangfor Operation and China Security Management System is a transport security management system that China believes in. SangforOperation and Community Management System 3.0.12 and previous versions had a mandate gap, which stemmed from an error in the argument flag in file/fort/login/edit pwd mall, which could lead to the restoration of weak passwords.
Hazard Level
High
Vulnerability Type
授权问题
Affected Vendor
深信服
Published
2026-01-22
Last Modified
2026-02-24
References
https://github.com/LX-LX88/cve/issues/21 https://vuldb.com/?ctiid.342301 https://vuldb.com/?id.342301 https://vuldb.com/?submit.736208
Share on: