Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Content Security Management Appliance Information Disclosure Vulnerability
Vulnerability Description
A vulnerability in the authorization module of Cisco Content Security Management Appliance (SMA) Software could allow an authenticated, remote attacker to gain out-of-scope access to email. The vulnerability exists because the affected software does not correctly implement role permission controls. An attacker could exploit this vulnerability by using a custom role with specific permissions. A successful exploit could allow the attacker to access the spam quarantine of other users.
CVSS Information
N/A
Vulnerability Type
授权机制不恰当
Vulnerability Title
Cisco Content Security Management Appliance 授权问题漏洞
Vulnerability Description
Cisco Content Security Management Appliance(SMA)是美国思科(Cisco)公司的一套内容安全管理设备。该设备主要用于管理电子邮件和Web安全设备的所有策略、报告、审计信息等。 Cisco Content SMA 12.5.0之前版本中的授权组件存在存在授权问题漏洞,该漏洞源于程序没有正确实现角色权限控制。远程攻击者可利用该漏洞获取其他访问权限啊,进而获取信息。
CVSS Information
N/A
Vulnerability Type
N/A