Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Meeting Server CLI Command Injection Vulnerability
Vulnerability Description
A vulnerability in the CLI configuration shell of Cisco Meeting Server could allow an authenticated, local attacker to inject arbitrary commands as the root user. The vulnerability is due to insufficient input validation during the execution of a vulnerable CLI command. An attacker with administrator-level credentials could exploit this vulnerability by injecting crafted arguments during command execution. A successful exploit could allow the attacker to perform arbitrary code execution as root on an affected product.
CVSS Information
N/A
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
Cisco Meeting Server 命令注入漏洞
Vulnerability Description
Cisco Meeting Server(Acano Conferencing Server)是美国思科(Cisco)公司的一套包含音频、视频的会议服务器软件。 Cisco Meeting Server中的CLI configuration shell存在命令注入漏洞,该漏洞源于不充分的输入验证。本地攻击者可通过插入特制的参数利用该漏洞以root用户身份执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A