Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A ZTE product is impacted by an XSS vulnerability. The vulnerability is caused by the lack of correct verification of client data in the WEB module. By inserting malicious scripts into the web module, a remote attacker could trigger an XSS attack when the user browses the web page. Then the attacker could use the vulnerability to steal user cookies or destroy the page structure. This affects: eVDC ZXCLOUD-iROSV6.03.04
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZTE eVDC 跨站脚本漏洞
Vulnerability Description
ZTE eVDC是中国中兴通讯(ZTE)公司的一个虚拟化数据中心产品服务。 ZTE WEB module 存在跨站脚本漏洞,该漏洞源于 WEB module 中缺少对客户端数据的正确验证,该漏洞使远程攻击者可以在用户浏览Web页面时触发XSS攻击。
CVSS Information
N/A
Vulnerability Type
N/A