Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in DigDash 2018R2 before p20200528, 2019R1 before p20200421, and 2019R2 before p20200430. It allows a user to provide data that will be used to generate the JNLP file used by a client to obtain the right Java application. By providing an attacker-controlled URL, the client will obtain a rogue JNLP file specifying the installation of malicious JAR archives and executed with full privileges on the client computer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DigDash 注入漏洞
Vulnerability Description
DigDash是法国DigDash公司的一套数据分析仪表板解决方案。 DigDash p20200528之前的2018R2版本、p20200421之前的2019R1版本和p20200430之前的2019R2版本中存在安全漏洞。攻击者可利用该漏洞运行恶意的应用程序并访问客户端系统。
CVSS Information
N/A
Vulnerability Type
N/A