Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. An incomplete firmware signature allows a local attacker to upgrade the equipment (kernel, file system) with unsigned, attacker-controlled, data. This occurs because the appliance_config file is signed but the .tar.sec file is unsigned.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Belden Hirschmann Tofino Xenon Security Appliance 安全漏洞
Vulnerability Description
Belden Hirschmann Tofino Xenon Security Appliance是美国Belden公司的一款防火墙安全设备。 Belden Hirschmann Tofino Xenon Security Appliance 03.2.00之前的版本中存在安全漏洞,该漏洞源于只签名了appliance_config文件而未签名.tar.sec文件。本地攻击者可借助未签名的数据利用该漏洞升级内核和文件系统。
CVSS Information
N/A
Vulnerability Type
N/A