Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local attacker to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploit this vulnerability by connecting to the affected system via Secure Shell (SSH) using the hard-coded credentials. A successful exploit could allow the attacker to access the underlying operating system as a low-privileged user. After low-level privileges are gained, the attacker could elevate to root privileges and take full control of the device. Cisco Bug IDs: CSCvc82982.
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Cisco Prime Collaboration Provisioning Software 安全漏洞
Vulnerability Description
Cisco Prime Collaboration Provisioning(PCP)Software是美国思科(Cisco)公司的一套基于Web的下一代通信服务软件。该软件对IP电话、语音邮件和统一通信环境提供IP通信服务功能。 Cisco PCP Software 11.6版本中存在安全漏洞,该漏洞源于系统上的硬编码账户密码。本地攻击者可通过Secure Shell (SSH)借助硬编码凭证连接到受影响的系统利用该漏洞访问底层操作系统,提升权限至root并控制设备。
CVSS Information
N/A
Vulnerability Type
N/A