Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in an operations script of Cisco UCS Central could allow an authenticated, remote attacker to execute arbitrary shell commands with the privileges of the daemon user. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by posting a crafted request to the user interface of Cisco UCS Central. This vulnerability affects Cisco UCS Central Software prior to Release 2.0(1c). Cisco Bug IDs: CSCve70825.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco UCS Central 安全漏洞
Vulnerability Description
Cisco UCS Central Software是美国思科(Cisco)公司的一套对全球Cisco UCS(统一计算系统)资源进行服务器管理及监控的解决方案。 Cisco UCS Central中的运行脚本存在任意命令执行漏洞,该漏洞源于程序没有充分的验证输入。远程攻击者可借助特制的请求利用该漏洞以守护进程用户权限执行任意的shell命令。
CVSS Information
N/A
Vulnerability Type
N/A