Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in EMC Navisphere Manager 6.4.1.0.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC Navisphere Manager 目录遍历和信息泄露漏洞
Vulnerability Description
EMC Navisphere Manager是基于WEB的存储管理系统。 EMC Navisphere Manager中存在目录遍历和信息泄漏漏洞,未经授权的远程用户可以通过使用目录遍历字符串"../"泄漏任意本地文件内容。起因是没有正确的过滤用户输入。攻击者还可以通过在请求末尾添加"."获得任意目录的内容。
CVSS Information
N/A
Vulnerability Type
N/A