2023-12-15 07:39:47
twcert
PUBLISHED
SmartStar Software CWS is a web-base integration platform, it has a vulnerability of using a hard-coded for a specific account with low privilege. An unauthenticated remote attacker can exploit this vulnerability to run partial processes and obtain partial information, but cant disrupt service or obtain sensitive information.