Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Jabber Client Framework Insecure Directory Permissions Vulnerability
Vulnerability Description
A vulnerability in the Cisco Jabber Client Framework (JCF) software, installed as part of the Cisco Jabber for Mac client, could allow an authenticated, local attacker to corrupt arbitrary files on an affected device that has elevated privileges. The vulnerability exists due to insecure directory permissions set on a JCF created directory. An authenticated attacker with the ability to access an affected directory could create a hard link to an arbitrary location on the affected system. An attacker could convince another user that has administrative privileges to perform an install or update the Cisco Jabber for Mac client to perform such actions, allowing files to be created in an arbitrary location on the disk or an arbitrary file to be corrupted when it is appended to or overwritten.
CVSS Information
N/A
Vulnerability Type
Permission Issues
Vulnerability Title
Cisco Jabber Client Framework 授权问题漏洞
Vulnerability Description
Cisco Jabber Client for Mac OS是美国思科(Cisco)公司的一套基于Mac OS平台的统一通信客户端程序。该程序提供即时消息、语音和视频呼叫等功能。Jabber Client Framework(JCF)Software是其中的一个统一通信客户端框架。 Cisco Jabber Client for Mac OS中的JCF Software存在安全漏洞。本地攻击者可利用该漏洞在磁盘上的任意位置创建文件或损坏任意文件。
CVSS Information
N/A
Vulnerability Type
N/A