漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cisco Finesse Request Processing Server-Side Request Forgery Vulnerability
Vulnerability Description
A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerability exists because the affected system does not properly validate user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to a user of the web application. A successful exploit could allow the attacker to access the system and perform unauthorized actions.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Finesse 输入验证错误漏洞
Vulnerability Description
Cisco Finesse是美国思科(Cisco)公司的一套呼叫中心管理软件。 Cisco Finesse 11.6(1)ES7之前版本和12.0(1)ES01之前版本中存在输入验证错误漏洞,该漏洞源于系统没有正确验证用户提交的输入。远程攻击者可通过发送特制的请求利用该漏洞访问系统并执行未授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A