Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0_POST_HF6, and ITMS 7.6_POST_HF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data, denial of service, server side request forgery, port scanning from the perspective of the machine where the parser is located, and other system impacts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Management Console 安全漏洞
Vulnerability Description
Symantec Management Console是美国赛门铁克(Symantec)公司的一套管理控制台程序。该程序用于管理Symantec Management Platform和其他Symantec解决方案的基于Web的用户界面。 Symantec Management Console ITMS 8.1 RU1之前版本、ITMS 8.0_POST_HF6之前版本和ITMS 7.6_POST_HF7之前版本中存在安全漏洞,该漏洞源于程序使用较弱配置的XML解析器处理带有指向外部实体参考的XML输入。
CVSS Information
N/A
Vulnerability Type
N/A