Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to read arbitrary text files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCud80148.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Prime Data Center Network Manager XML外部实体漏洞
Vulnerability Description
Cisco Prime Data Center Network Manager(DCNM)是美国思科(Cisco)公司的一套数据中心网络管理器。该管理器可对网络进行多协议管理,并对交换机的运行状况和性能提供故障排除功能。 Cisco Prime DCNM 6.2(1)之前的版本中存在XML外部实体漏洞,该漏洞源于程序没有充分过滤用户提交的数据。攻击者可利用该漏洞以底层操作系统的root权限获取任意文本文件的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A