Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version information, which causes the state to be set to CLIENT_AUTHENTIC.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Greenbone Networks OpenVAS Administrator 身份验证绕过漏洞
Vulnerability Description
OpenVAS(Open Vulnerability Assessment System)是德国Greenbone Networks公司的一套开放式漏洞评估系统。OpenVAS Administrator是其中的一个管理员组件,负责与openvas-manager、gsad通信,完成用户和配置管理等操作。 OpenVAS Administrator 1.2.2之前的1.2版本和1.3.2之前的1.3版本中存在安全漏洞。远程攻击者可借助特制的OAP请求利用该漏洞绕过OAP身份验证限制,并执行OAP命令。
CVSS Information
N/A
Vulnerability Type
N/A