Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco RoomOS Software Privilege Escalation Vulnerability
Vulnerability Description
A vulnerability in Cisco RoomOS Software could allow an authenticated, local attacker to write files to the underlying filesystem with root privileges. The vulnerability is due to insufficient permission restrictions on a specific process. An attacker could exploit this vulnerability by logging in to an affected device with remote support credentials and initiating the specific process on the device and sending crafted data to that process. A successful exploit could allow the attacker to write files to the underlying file system with root privileges.
CVSS Information
N/A
Vulnerability Type
Permission Issues
Vulnerability Title
Cisco RoomOS Software 授权问题漏洞
Vulnerability Description
Cisco RoomOS Software是美国思科(Cisco)公司的一套用于Cisco设备的自动管理软件。该软件主要用于升级、管理Cisco设备的主板固件。 Cisco RoomOS Software ce-9.7.3之前版本中存在授权问题漏洞,该漏洞源于程序对一些进程没有进行充分的权限限制。本地攻击者可利用该漏洞以root权限向底层文件操作系统上写入文件。
CVSS Information
N/A
Vulnerability Type
N/A