Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco ASR 5000 Series Aggregation Services Routers Enhanced Charging Service Rule Bypass Vulnerability
Vulnerability Description
A vulnerability in the Enhanced Charging Service (ECS) functionality of Cisco ASR 5000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass the traffic classification rules on an affected device. The vulnerability is due to insufficient input validation of user traffic going through an affected device. An attacker could exploit this vulnerability by sending a malformed HTTP request to an affected device. A successful exploit could allow the attacker to bypass the traffic classification rules and potentially avoid being charged for traffic consumption.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco ASR 5000 输入验证错误漏洞
Vulnerability Description
Cisco ASR 5000是美国思科(Cisco)公司的一款5000系列网关产品。 Cisco ASR 5000 Series Aggregation Services Routers(Release 21.18.0之前版本)中的Enhanced Charging Service (ECS)功能存在输入验证错误漏洞。远程攻击者可通过发送格式错误的HTTP请求利用该漏洞绕过流量分类规则。
CVSS Information
N/A
Vulnerability Type
N/A