| Title | 深圳市锐明技术股份有限公司 Crocus 1.3.40 任意文件下载漏洞 |
|---|
| Description | As a provider of intelligent IoT (AIoT) solutions for commercial vehicles focusing on AI and video technologies, Shenzhen Ruiming Technology Co., Ltd. has the Crocus System as one of its core products. The Crocus System is designed to leverage artificial intelligence (AI), high-definition (HD) video, big data, and autonomous driving technologies to help commercial vehicles reduce traffic accidents and cargo loss, while improving the operational efficiency of enterprises or fleets.
https://www.streamax.com/page/about.html
However,Arbitrary File Download Vulnerability in the DeviceFileReport.do Interface of Crocus System by Shenzhen Ruiming Technology Co., Ltd. |
|---|
| Source | ⚠️ https://github.com/FightingLzn9/vul/blob/main/%E6%B7%B1%E5%9C%B3%E5%B8%82%E9%94%90%E6%98%8E%E6%8A%80%E6%9C%AF%E8%82%A1%E4%BB%BD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8Crocus%E7%B3%BB%E7%BB%9F-7.md |
|---|
| User | nu11 (UID 81380) |
|---|
| Submission | 10/08/2025 16:38 (9 months ago) |
|---|
| Moderation | 10/17/2025 15:02 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 328924 [Shenzhen Ruiming Technology Streamax Crocus 1.3.40 DeviceFileReport.do?Action=Download download FilePath path traversal] |
|---|
| Points | 20 |
|---|