Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to (1) enumerate user accounts via a getUsers request, (2) assign a role to a user account via an addAssigneesToRole request, (3) remove a role from a user account via a removeAssigneesFromRole request, or (4) have other unspecified impact.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Accelerite Persistent Systems Radia Client Automation 权限许可和访问控制漏洞
Vulnerability Description
Accelerite Persistent Systems Radia Client Automation(RCA)是美国Accelerite公司的一套基于企业客户端设计的解决方案。该方案支持用户在物理或虚拟客户端中实现自动管理。 Accelerite Persistent Systems RCA中存在安全漏洞,该漏洞源于程序没有正确限制对特定请求的访问。远程攻击者可借助getUsers请求利用该漏洞枚举用户账户;借助addAssigneesToRole请求利用该漏洞为用户账户分配角色;借助removeA
CVSS Information
N/A
Vulnerability Type
N/A