Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the web upload function of Cisco Cloud Services Platform 2100 could allow an authenticated, remote attacker to obtain restricted shell access on an affected system. The vulnerability is due to insufficient input validation of parameters passed to a specific function within the user interface. An attacker could exploit this vulnerability by injecting code into a function parameter. Cisco Bug IDs: CSCvi12935.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Cloud Services Platform 2100 输入验证漏洞
Vulnerability Description
Cisco Cloud Services Platform(CSP)2100是美国思科(Cisco)公司的一套用于数据中心网络功能虚拟化的软硬件平台。 Cisco CSP 2100中的Web上传函数存在输入验证漏洞,该漏洞该源于程序没有充分的验证传入到用户界面中特定函数的参数。远程攻击者可通过注入代码利用该漏洞获取被限制shell的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A