Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry in a log file used during composition of HTML documents for sealert.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
REDHAT SETroubleShoot sealert 'Access Vector Cache(AVC)' 跨站脚本注入漏洞
Vulnerability Description
setroubleshoot 2.0.5版本存在跨站脚本攻击漏洞。本地用户可以借助一个特制的(1)文件名或(2)程序名,注入任意的web脚本或HTML。此漏洞会触发日志文件中的Access Vector Cache(AVC)登录进入。日志文件用于组成HTML文档。
CVSS Information
N/A
Vulnerability Type
N/A