Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Docker Engine configuration of Cisco CloudCenter Orchestrator (CCO; formerly CliQr) could allow an unauthenticated, remote attacker to install Docker containers with high privileges on the affected system. Affected Products: This vulnerability affect all releases of Cisco CloudCenter Orchestrator (CCO) deployments where the Docker Engine TCP port 2375 is open on the system and bound to local address 0.0.0.0 (any interface).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco CloudCenter Orchestrator Docker Engine 权限许可和访问控制漏洞
Vulnerability Description
Cisco CloudCenter是美国思科(Cisco)公司的一套混合云管理平台解决方案。该方案支持应用迁移、跨众多云环境进行DevOps自动化以及在云中或云间进行动态扩容等。Orchestrator是用于其中的一个编排器组件。Docker Engine是其中的一个容器引擎扩展。 Cisco CloudCenter Orchestrator中的Docker Engine配置存在安全漏洞,该漏洞源于程序没有正确配置文件。远程攻击者可借助提升的权限利用该漏洞在受影响的系统中安装Docker容器。
CVSS Information
N/A
Vulnerability Type
N/A