ZTE BigVideo analysis product has an input verification...
High severity
Unreviewed
Published
Dec 28, 2021
to the GitHub Advisory Database
•
Updated Aug 8, 2023
Description
Published by the National Vulnerability Database
Dec 27, 2021
Published to the GitHub Advisory Database
Dec 28, 2021
Last updated
Aug 8, 2023
ZTE BigVideo analysis product has an input verification vulnerability. Due to the inconsistency between the front and back verifications when configuring the large screen page, an attacker with high privileges could exploit this vulnerability to tamper with the URL and cause service exception.
References