Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AppFormix: Debug Shell Command Execution in AppFormix Agent
Vulnerability Description
A malicious user with unrestricted access to the AppFormix application management platform may be able to access a Python debug console and execute system commands with root privilege. The AppFormix Agent exposes the debug console on a host where AppFormix Agent is executing. If the host is executing AppFormix Agent, an attacker may access the debug console and execute Python commands with root privilege. Affected AppFormix releases are: All versions up to and including 2.7.3; 2.11 versions prior to 2.11.3; 2.15 versions prior to 2.15.2. Juniper SIRT is not aware of any malicious exploitation of this vulnerability, however, the issue has been seen in a production network. No other Juniper Networks products or platforms are affected by this issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Juniper AppFormix 安全漏洞
Vulnerability Description
Juniper AppFormix是美国瞻博网络(Juniper Networks)公司的一套针对公有云、私有云和混合云的优化和管理软件平台。 Juniper AppFormix 2.7版本、2.11.3之前的2.11版本和2.15.2之前的2.15版本中存在安全漏洞。攻击者可利用该漏洞访问Python调试控制台并以root权限执行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A