Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Small Business Switches Information Disclosure Vulnerability
Vulnerability Description
A vulnerability in the web UI of Cisco Small Business Switches could allow an unauthenticated, remote attacker to access sensitive device information. The vulnerability exists because the software lacks proper authentication controls to information accessible from the web UI. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web UI of an affected device. A successful exploit could allow the attacker to access sensitive device information, which includes configuration files.
CVSS Information
N/A
Vulnerability Type
配置
Vulnerability Title
多款Cisco产品授权问题漏洞
Vulnerability Description
Cisco Small Business 500 Series Managed Switches是美国思科(Cisco)公司的一款500系列管理型交换机。 多款Cisco产品中的Web UI存在授权问题漏洞,该漏洞源于程序没有对该界面可访问到的信息进行正确的身份验证控制。远程攻击者可通过发送恶意的HTTP请求利用该漏洞访问敏感的设备信息,包括配置文件。以下产品及版本受到影响:250 Series Smart Switches 2.5.0.92之前版本;350 Series Managed Switches
CVSS Information
N/A
Vulnerability Type
N/A