PT-2026-20496 · Unknown · Rongzhitong Visual Integrated Command/Dispatch Platform
Xxllyy
·
Publicado
2026-02-18
·
Atualizado
2026-02-18
·
CVE-2026-2667
CVSS v3.1
5.3
Média
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Rongzhitong Visual Integrated Command and Dispatch Platform versions prior to 20260207
Description
A flaw exists in Rongzhitong Visual Integrated Command and Dispatch Platform that allows for improper access controls. This issue can be triggered remotely through manipulation of an unknown function within the file
/dispatch/api?cmd=userinfo. The exploit for this issue has been publicly disclosed. The vendor was informed of the issue but did not respond.Recommendations
Update to a version later than 20260206.
Exploit
Correção
Improper Access Control
Incorrect Privilege Assignment
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Rongzhitong Visual Integrated Command/Dispatch Platform