Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Digital Guardian Management Console 7.1.2.0015 has an SSRF issue that allows remote attackers to read arbitrary files via file:// URLs, send TCP traffic to intranet hosts, or obtain an NTLM hash. This can occur even if the logged-in user has a read-only role.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Digital Guardian Management Console 安全漏洞
Vulnerability Description
Digital Guardian Management Console是美国Digital Guardian公司的一套数据保护软件。该软件能够提供企业网络、服务器、数据库和云等定位的软件,用以阻止用户的恶意行为或终端上的恶意软件。 Digital Guardian Management Console 7.1.2.0015版本中存在服务器端跨站请求伪造漏洞。远程攻击者可借助file:// URLs利用该漏洞读取任意文件,向内网主机发送TCP流量或获取NTLM散列。
CVSS Information
N/A
Vulnerability Type
N/A