Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Disaster Recovery Framework (DRF) master server in Cisco Unified Communications products, including Unified Communications Manager (CUCM) 5.x and 6.x, Unified Presence 1.x and 6.x, Emergency Responder 2.x, and Mobility Manager 2.x, does not require authentication for requests received from the network, which allows remote attackers to execute arbitrary code via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified Communications灾难恢复框架远程命令执行漏洞
Vulnerability Description
灾难恢复框架(DRF)是Cisco Unified Communications产品家族中一些产品间所共享的功能,允许管理员将系统配置备份和恢复到本地磁带驱动或远程服务器。 DRF Master服务器负责执行备份和恢复请求。DRF Master服务器对从网络接收到的请求没有执行认证,未经认证的远程用户可以连接到DRF Master服务器并执行任何DRF相关的任务,包括: * 修改或删除计划备份 * 将系统备份拷贝到用户指定的远程服务器 * 从远程服务器恢复用户指定的配置 * 执行任意操作系统命令 攻击者可
CVSS Information
N/A
Vulnerability Type
N/A