Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and earlier does not always use RBAC for backend database access, which allows remote authenticated users to read or write to database entries via (1) the GUI or (2) a crafted HTTP request, aka Bug ID CSCuv87025.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Videoscape Distribution Suite Service Manager 安全漏洞
Vulnerability Description
Cisco Videoscape Distribution Suite Service Manager(VDS-SM)是美国思科(Cisco)公司的一套用于VDS产品的报告和分析工具。该工具提供实时的配置、管理、分析和监控等功能。 Cisco VDS-SM 3.4.0及之前版本中存在安全漏洞,该漏洞源于程序没有实时对后端数据库访问使用RBAC控制。远程攻击者可借助GUI或特制的HTTP请求利用该漏洞读取或写入数据库条目。
CVSS Information
N/A
Vulnerability Type
N/A