Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on Fujitsu Eternus Storage DX200 S4 devices through 2020-11-25. After logging into the portal as a root user (using any web browser), the portal can be accessed with root privileges when the URI cgi-bin/csp?cspid={XXXXXXXXXX}&csppage=cgi_PgOverview&csplang=en is visited from a different web browser.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fujitsu Eternus Storage DX200 S4 授权问题漏洞
Vulnerability Description
Fujitsu Fujitsu Eternus Storage DX200 S4是日本Fujitsu公司的一款适用于企业环境可为服务器虚拟化,电子邮件,数据库、业务应用程序、集中式文件服务提供存储支持的存储设备。该存储设备拥有精简配置,自动存储分层,透明故障转移和服务质量管理等功能。 Fujitsu Eternus Storage DX200 S4版本存在授权问题漏洞,该漏洞源于无法设置允许重放url以实现根级别特权的身份验证cookie。
CVSS Information
N/A
Vulnerability Type
N/A