Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Wide Area Application Services Software HTTPS Proxy Authentication Bypass Vulnerability
Vulnerability Description
A vulnerability in the HTTPS proxy feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote attacker to use the Central Manager as an HTTPS proxy. The vulnerability is due to insufficient authentication of proxy connection requests. An attacker could exploit this vulnerability by sending a malicious HTTPS CONNECT message to the Central Manager. A successful exploit could allow the attacker to access public internet resources that would normally be blocked by corporate policies.
CVSS Information
N/A
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Cisco Wide Area Application Services Software 访问控制错误漏洞
Vulnerability Description
Cisco Wide Area Application Services Software(WAAS Software)是美国思科(Cisco)公司的一套广域网链路加速软件。该软件主要用于带宽小和延时大的链路环境。 Cisco WAAS Software中的HTTPS代理功能存在访问控制错误漏洞,该漏洞源于程序没有充分地认证代理连接请求。远程攻击者可通过发送恶意的HTTPS CONNECT消息利用该漏洞访问被限制的资源。
CVSS Information
N/A
Vulnerability Type
N/A