Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with "cmc" and "password" (the default username and password). By exploiting a vulnerability in the restrictssh feature of the menuing script, an attacker can escape from the restricted shell.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SolarWinds Log & Event Manager 安全漏洞
Vulnerability Description
SolarWinds Log and Event Manager(LEM)是美国SolarWinds公司的一款日志与事件管理器,它提供实时日志分析、内存事件关联和威胁攻击响应等功能。 SolarWinds LEM 6.3.1 Hotfix 4之前的版本中存在安全漏洞。攻击者可利用该漏洞绕过限制。
CVSS Information
N/A
Vulnerability Type
N/A