Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-0377
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the Open Systems Gateway initiative (OSGi) interface of Cisco Policy Suite before 18.1.0 could allow an unauthenticated, remote attacker to directly connect to the OSGi interface. The vulnerability is due to a lack of authentication. An attacker could exploit this vulnerability by directly connecting to the OSGi interface. An exploit could allow the attacker to access or change any files that are accessible by the OSGi process. Cisco Bug IDs: CSCvh18017.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
关键功能的认证机制缺失
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Policy Suite 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Policy Suite(CPS)是美国思科(Cisco)公司的一套下一代策略管理解决方案。该方案提供了基于用户的业务规则、应用程序和网络资源的实时管理等功能。 Cisco CPS 18.1.0之前版本中的Open Systems Gateway initiative (OSGi)界面存在安全漏洞,该漏洞源于程序缺少身份验证。远程攻击者可利用该漏洞直接连接到OSGi界面,访问或更改OSGi进程可访问的任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
-Cisco Policy Suite unknown Cisco Policy Suite unknown -
II. Public POCs for CVE-2018-0377
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2018-0377
Please Login to view more intelligence information
New Vulnerabilities
Product: Cisco Policy Suite unknown
Vendor: n/a
Same weakness: CWE-306
V. Comments for CVE-2018-0377

No comments yet

Leave a comment