Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco DNA Center Cross-Site Request Forgery Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to manipulate an authenticated user into executing malicious actions without their awareness or consent. The vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a web-based management user to follow a specially crafted link. A successful exploit could allow the attacker to perform arbitrary actions on the device with the privileges of the authenticated user. These actions include modifying the device configuration, disconnecting the user's session, and executing Command Runner commands.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Cisco DNA Center Software 跨站请求伪造漏洞
Vulnerability Description
Cisco DNA Center是美国思科(Cisco)公司的一个网络管理和命令中心服务。 Cisco DNA Center Software 存在跨站请求伪造漏洞,该漏洞源于受影响设备基于web的管理界面的CSRF保护不足造成的。攻击者可利用该漏洞任意恶意操作。
CVSS Information
N/A
Vulnerability Type
N/A