Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in IBM Cloud Orchestrator services/[action]/launch API. An authenticated domain admin user might modify cross domain resources via a /services/[action]/launch API call, provided it would have been possible for the domain admin user to gain access to a resource identifier of the other domain.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Cloud Orchestrator和IBM SmartCloud Orchestrator 安全漏洞
Vulnerability Description
IBM Cloud Orchestrator和IBM SmartCloud Orchestrator都是美国IBM公司的为IT服务提供云管理、加快软件与基础架构交付的解决方案。该方案提供扩展内部和外部部署云服务以及应用程序接口和工具扩展与现有环境集成等功能。 IBM Cloud Orchestrator和IBM SmartCloud Orchestrator中存在安全漏洞。攻击者可通过/services/[action]/launch API调用利用该漏洞获取访问权限。以下版本受到影响:IBM Cloud
CVSS Information
N/A
Vulnerability Type
N/A