Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Password leak in smbdriver logs
Vulnerability Description
Cloud Foundry SMB Volume, versions prior to v2.0.3, accidentally outputs sensitive information to the logs. A remote user with access to the SMB Volume logs can discover the username and password for volumes that have been recently created, allowing the user to take control of the SMB Volume.
CVSS Information
N/A
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Cloud Foundry SMB Volume 日志信息泄露漏洞
Vulnerability Description
Cloud Foundry SMB Volume是美国Cloud Foundry基金会的一款SMB(服务器消息块)卷服务。该产品提供SMB驱动程序支持。 Cloud Foundry SMB Volume 2.0.3之前版本中存在安全漏洞,该漏洞源于程序可能会将敏感信息导出到日志中。远程攻击者可利用该漏洞控制SMB Volume。
CVSS Information
N/A
Vulnerability Type
N/A