Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to conduct directory traversal attacks, and consequently upload and execute arbitrary programs, via a request to TCP port 443.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell ZENworks Configuration Management Control Center 任意文件上传漏洞
Vulnerability Description
Novell ZENworks Configuration Management(ZCM)是美国Novell公司的一套配置管理解决方案。该方案可借助集成工具,在物理、虚拟和云环境中实现IT管理和业务流程的自动化。 Novell ZENworks Configuration Management (ZCM) 10.3和11.2版本中的web服务器中存在漏洞,该漏洞源于程序对zenworks/jsp/index.jsp没有正确执行身份验证通。通过请求到TCP端口443,远程攻击者利用该漏洞进行目录遍历攻击,从
CVSS Information
N/A
Vulnerability Type
N/A