Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple vulnerabilities in Cisco Data Center Network Manager (DCNM) Software could allow a remote attacker to inject arbitrary values into DCNM configuration parameters, redirect a user to a malicious website, inject malicious content into a DCNM client interface, or conduct a cross-site scripting (XSS) attack against a user of the affected software. Cisco Bug IDs: CSCvf40477, CSCvf63150, CSCvf68218, CSCvf68235, CSCvf68247.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Cisco Data Center Network Manager Software 安全漏洞
Vulnerability Description
Cisco Data Center Network Manager(DCNM)Software是美国思科(Cisco)公司的一套数据中心管理系统。该系统适用于Cisco Nexus和MDS系列交换机,提供存储可视化、配置和故障排除等功能。 Cisco DCNM Software中的Web界面存在HTTP注入漏洞,该漏洞源于程序没有充分的对HTTP包头参数中的值执行输入验证。远程攻击者可通过诱使用户点击恶意的链接并向HTTP消息中注入恶意的HTTP包头利用该漏洞将用户重定向到恶意的网站。
CVSS Information
N/A
Vulnerability Type
N/A