Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Client Manager Server of Cisco Workload Automation and Cisco Tidal Enterprise Scheduler could allow an unauthenticated, remote attacker to retrieve any file from the Client Manager Server. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted URL to the Client Manager Server. An exploit could allow the attacker to retrieve any file from the Cisco Workload Automation or Cisco Tidal Enterprise Scheduler Client Manager Server. This vulnerability affects the following products: Cisco Tidal Enterprise Scheduler Client Manager Server releases 6.2.1.435 and later, Cisco Workload Automation Client Manager Server releases 6.3.0.116 and later. Cisco Bug IDs: CSCvc90789.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Tidal Enterprise Scheduler和Workload Automation 输入验证漏洞
Vulnerability Description
Cisco Tidal Enterprise Scheduler(TES)和Workload Automation(CWA)是美国思科(Cisco)公司的产品。TES一套工作自动化解决方案。该方案简化了企业范围内的作业调度和自动化业务流程的定义、管理和交付的方式。CWA是一套用于优化数据中心工作负载管理的软件。Client Manager Server是其中的一个客户端管理服务。 Cisco TES和CWA中的Client Manager Server存在任意文件读取漏洞,该漏洞源于程序没有充分的执行输入
CVSS Information
N/A
Vulnerability Type
N/A