Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lenovo Switch Center 权限许可和访问控制漏洞
Vulnerability Description
Lenovo Switch Center(前称IBM System Networking Switch Center)是中国联想(Lenovo)公司的一套用来远程监控和管理以太网融合交换机的应用程序。 IBM System Networking Switch Center 7.1.3.4及之前版本和Lenovo Switch Center 8.1.1.0版本中存在本地提权漏洞,该漏洞源于程序允许访问Apache Axis AdminService配置方法。本地攻击者可通过在服务器中安装任意.jsp文件利用
CVSS Information
N/A
Vulnerability Type
N/A