Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco DNA Spaces: Connector Command Injection Vulnerability
Vulnerability Description
A vulnerability in Cisco DNA Spaces: Connector could allow an authenticated, local attacker to perform a command injection attack and execute arbitrary commands on the underlying operating system as root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI command. An attacker could exploit this vulnerability by including malicious input during the execution of the affected command. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system as root.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco DNA Spaces:Connector 操作系统命令注入漏洞
Vulnerability Description
Cisco DNA Spaces是美国思科(Cisco)公司的一套室内定位服务平台。Cisco DNA Spaces:Connector是其中的一个用于支持Cisco无线控制器通信的连接器。 Cisco DNA Spaces:Connector 2.0之前版本中存在操作系统命令注入漏洞,该漏洞源于程序没有对发送到CLI命令的参数进行充分的验证。本地攻击者可借助恶意的输入利用该漏洞在底层操作系统上以root权限执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A