漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Iomega and LenovoEMC NAS Web UI Vulnerabilities
Vulnerability Description
For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, when joining a PersonalCloud setup, an attacker can craft a command injection payload using backtick "``" characters in the client:password parameter. As a result, arbitrary commands may be executed as the root user. The attack requires a value __c and iomega parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Lenovo产品安全漏洞
Vulnerability Description
Lenovo Iomega StorCenter px12-450r等都是中国联想(Lenovo)公司的存储设备。 使用4.1.402.34662及之前版本固件的多款Lenovo产品中的Web UI存在安全漏洞。攻击者可借助‘value __c’和‘iomega’参数利用该漏洞以root用户身份执行任意命令。以下产品受到影响:Lenovo Iomega StorCenter px12-450r,StorCenter px12-400r,StorCenter px4-300r,StorCenter px6-
CVSS Information
N/A
Vulnerability Type
N/A