漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
A vulnerability in the Policy and Charging Rules Function (PCRF) of the Cisco Policy Suite (CPS) could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access to the internal VLAN where CPS is deployed. The vulnerability is due to incorrect permissions of certain system files and not sufficiently protecting sensitive data that is at rest. An attacker could exploit the vulnerability by using certain tools available on the internal network interface to request and view system files. An exploit could allow the attacker to find out sensitive information about the application. Cisco Bug IDs: CSCvf77666.
漏洞信息
N/A
漏洞
权限、特权和访问控制
漏洞
Cisco Policy Suite Policy and Charging Rules Function 信息泄露漏洞
漏洞信息
Cisco Policy Suite(CPS)是美国思科(Cisco)公司的一套下一代策略管理解决方案。该方案提供了基于用户的业务规则、应用程序和网络资源的实时管理等功能。Policy and Charging Rules Function(PCRF)是其中的一个策略、规则设置功能组件。 CPS中的PCRF存在信息泄露漏洞,该漏洞源于程序为系统文件分配了错误的权限,并且没有充分的保护敏感数据。远程攻击者可通过使用内部网络界面上可用的工具利用该漏洞访问敏感信息。
漏洞信息
N/A
漏洞
N/A