Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Content Security Management Appliance (SMA) 8.3.6-039, 9.1.0-31, and 9.1.0-103 improperly restricts the privileges available after LDAP authentication, which allows remote authenticated users to read or write to an arbitrary user's Spam Quarantine folder by visiting a spam-notification URL, aka Bug ID CSCuv65894.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Content Security Management Appliance 安全漏洞
Vulnerability Description
Cisco Content Security Management Appliance(SMA)是美国思科(Cisco)公司的一套内容安全管理设备。该设备主要用于管理电子邮件和Web安全设备的所有策略、报告、审计信息等。 Cisco Content SMA中存在安全漏洞,该漏洞源于程序授予用户不正确的身份验证权限。远程攻击者可通过访问spam-notification URL利用该漏洞获取其他用户的Spam Quarantine的读和写权限,操纵Quarantine邮件消息和配置。以下版本受到影响:Cis
CVSS Information
N/A
Vulnerability Type
N/A