漏洞标题
N/A
漏洞描述信息
Toshiba FlashAir SD-WD/WC系列Class 6型号, firmware版本1.00.04及其后续版本, FlashAir SD-WD/WC系列Class 10型号W-02及其后续版本, FlashAir SD-WE系列Class 10型号W-03, FlashAir Class 6型号, firmware版本1.00.04及其后续版本, FlashAir II Class 10型号W-02系列及其后续版本, FlashAir III Class 10型号W-03系列, FlashAir Class 6型号, firmware版本1.00.04及其后续版本, FlashAir W-02系列Class 10型号, firmware版本2.00.02及其后续版本, FlashAir W-03系列Class 10型号,在启用“Internet pass- thru Mode”时,无需对从STA侧LAN接受连接进行验证,这使攻击者可以从STA侧LAN获取文件或数据。
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The Toshiba FlashAir SD-WD/WC series Class 6 model with firmware version 1.00.04 and later, FlashAir SD-WD/WC series Class 10 model W-02 with firmware version 2.00.02 and later, FlashAir SD-WE series Class 10 model W-03, FlashAir Class 6 model with firmware version 1.00.04 and later, FlashAir II Class 10 model W-02 series with firmware version 2.00.02 and later, FlashAir III Class 10 model W-03 series, FlashAir Class 6 model with firmware version 1.00.04 and later, FlashAir W-02 series Class 10 model with firmware version 2.00.02 and later, FlashAir W-03 series Class 10 model does not require authentication on accepting a connection from STA side LAN when "Internet pass-thru Mode" is enabled, which allows attackers with access to STA side LAN can obtain files or data.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多款Toshiba产品安全漏洞
漏洞描述信息
Toshiba FlashAir SD-WD/WC series Class 6 model等都是日本东芝(Toshiba)公司的无线存储卡产品。 多款Toshiba产品中存在安全漏洞,该漏洞源于程序没有对来自STA side LAN的连接执行身份验证。攻击者可利用该漏洞获取文件或数据。以下产品和版本受到影响:使用1.00.04及之后版本固件的Toshiba FlashAir SD-WD/WC series Class 6 model;使用2.00.02及之后版本固件的FlashAir SD-WD/WC
CVSS信息
N/A
漏洞类别
授权问题