|
|||
Rule General Information |
---|
Release Date: | 2024-07-02 | |
Rule Name: | Keytop Intelligent Parking Toll Collection System Webservice.asmx Arbitrary File Upload Vulnerability | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Keytop Intelligent Parking Toll Collection System is a parking toll management solution provided by Keytop for commercial parking lots. Its Webservice.asmx interface has any file upload vulnerability, which can be used by remote attackers without authentication to upload malicious files and execute any commands to obtain server permissions. | |
Impact: | Attackers can upload viruses, Trojans, WebShell, other malicious scripts or pictures containing scripts to the server, and attackers can use these files for subsequent attacks. | |
Affected OS: | Windows, Linux, Others | |
Reference: | ||
Solutions |
---|
Please contact the software vendor to update the software patch. |