Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OnApp before 5.0.0-88, 5.5.0-93, and 6.0.0-196 allows an attacker to run arbitrary commands with root privileges on servers managed by OnApp for XEN/KVM hypervisors. To exploit the vulnerability an attacker has to have control of a single server on a given cloud (e.g. by renting one). From the source server, the attacker can craft any command and trigger the OnApp platform to execute that command with root privileges on a target server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OnApp 命令注入漏洞
Vulnerability Description
OnApp是英国OnApp公司的一套适用于服务提供商的云管理平台。 OnApp 5.0.0-88之前版本、5.5.0-93之前版本和6.0.0-196之前版本中存在安全漏洞。攻击者可利用该漏洞以root权限执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A