Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The rootpw plugin in rPath Appliance Platform Agent 2 and 3 does not re-validate requests from a browser with a valid administrator session, including requests to change the password, which makes it easier for physically proximate attackers to gain privileges and maintain control over the administrator account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RPath Appliance_platform_agent 权限许可和访问控制漏洞
Vulnerability Description
rPath Appliance Platform Agent 2和3版本中的rootpw plugin,没有再次验证来自带有有效的管理员会话的浏览器的请求,包括修改密码的请求,这使得physically proximate攻击者可以获得特权和维持对管理员帐户的控制。
CVSS Information
N/A
Vulnerability Type
N/A