Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Enterprise NFV Infrastructure Software Denial of Service Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to cause an affected system to reboot or shut down. The vulnerability is due to insufficient server-side authorization checks. An attacker who is logged in to the web-based management interface as a low-privileged user could exploit this vulnerability by sending a crafted HTTP request. A successful exploit could allow the attacker to use the low-privileged user account to reboot or shut down the affected system.
CVSS Information
N/A
Vulnerability Type
授权机制不恰当
Vulnerability Title
Cisco Enterprise NFV Infrastructure Software 安全漏洞
Vulnerability Description
Cisco Enterprise NFV Infrastructure Software(NFVIS)是美国思科(Cisco)公司的一套NVF基础架构软件平台。该平台可以通过中央协调器和控制器实现虚拟化服务的全生命周期管理。 Cisco Enterprise NFVIS中基于Web的管理界面存在拒绝服务漏洞,该漏洞源于程序没有充分的执行服务器端的授权检测。远程攻击者可通过发送特制的HTTP请求利用该漏洞重启或关闭受影响的系统。
CVSS Information
N/A
Vulnerability Type
N/A