Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The publish-event event-manager feature in Cisco IOS 15.5(2)S and 15.5(3)S on Cloud Services Router 1000V devices allows local users to execute arbitrary commands with root privileges by leveraging administrative access to enter crafted environment variables, aka Bug ID CSCux14943.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Cloud Services Router 1000V IOS 输入验证漏洞
Vulnerability Description
Cisco IOS on Cloud Services Router(CSR)1000V是美国思科(Cisco)公司一套运行于云服务路由器1000V系列产品中的操作系统。 Cisco CSR 1000V设备上的Cisco IOS 15.5(2)S版本和15.5(3)S版本的publish-event event-manager功能中存在安全漏洞。本地攻击者可通过使用管理员访问权限输入特制的环境变量利用该漏洞以root权限执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A