Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerability is due to insufficient validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request that contains directory traversal character sequences to an affected system. A successful exploit could allow the attacker to view arbitrary files on the affected system.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Cisco SD-WAN vManage Software 路径遍历漏洞
Vulnerability Description
Cisco SD-WAN vManage Software等都是美国思科(Cisco)公司的产品。Cisco SD-WAN vManage Software是一款用于SD-WAN(软件定义广域网络)解决方案的管理软件。Cisco SD-WAN是一种高度安全的云规模架构,具有开放性、可编程性和可扩展性。Cisco SD-WAN vManage是一个高度可定制的仪表板。ecto等都是elixir-ecto开源的产品。ecto是一个用于数据映射和语言集成查询的工具包。 Cisco SD-WAN vManage中
CVSS Information
N/A
Vulnerability Type
N/A