Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with the Checkin.prog or Update.prog names, then performing a CVS commit action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CVS Checkin.prog二进制执行漏洞
Vulnerability Description
CVS 1.10.8 server不正确限制用户创建任意Checkin.prog或Update.prog程序,远程CVS委托可以利用该漏洞修改或创建名为Checkin.prog或Update.prog的特洛伊木马程序,然后执行CVS委托操作。
CVSS Information
N/A
Vulnerability Type
N/A