| 제목 | 深圳市锐明技术股份有限公司 Crocus 1.3.40 任意文件下载漏洞 |
|---|
| 설명 | As a provider of intelligent IoT (AIoT) solutions for commercial vehicles focusing on AI and video technologies, Shenzhen Ruiming Technology Co., Ltd. has the Crocus System as one of its core products. The Crocus System is designed to leverage artificial intelligence (AI), high-definition (HD) video, big data, and autonomous driving technologies to help commercial vehicles reduce traffic accidents and cargo loss, while improving the operational efficiency of enterprises or fleets.
https://www.streamax.com/page/about.html
However,Arbitrary File Download Vulnerability in the DeviceFileReport.do Interface of Crocus System by Shenzhen Ruiming Technology Co., Ltd. |
|---|
| 원천 | ⚠️ https://github.com/FightingLzn9/vul/blob/main/%E6%B7%B1%E5%9C%B3%E5%B8%82%E9%94%90%E6%98%8E%E6%8A%80%E6%9C%AF%E8%82%A1%E4%BB%BD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8Crocus%E7%B3%BB%E7%BB%9F-7.md |
|---|
| 사용자 | nu11 (UID 81380) |
|---|
| 제출 | 2025. 10. 08. PM 04:38 (9 개월 ago) |
|---|
| 모더레이션 | 2025. 10. 17. PM 03:02 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 328924 [Shenzhen Ruiming Technology Streamax Crocus 1.3.40 DeviceFileReport.do?Action=Download download FilePath 디렉토리 순회] |
|---|
| 포인트들 | 20 |
|---|