Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Unified Communications Manager Self Care Portal Authorization Bypass Vulnerability
Vulnerability Description
A vulnerability in the Self Care Portal of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to modify data on an affected system without proper authorization. The vulnerability is due to insufficient validation of user-supplied data to the Self Care Portal. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected system. A successful exploit could allow the attacker to modify information without proper authorization.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
使用假设不可变数据进行的认证绕过
Vulnerability Title
Cisco Cisco Self Care Portal 安全漏洞
Vulnerability Description
Cisco Cisco Self Care Portal是美国思科(Cisco)公司的一个应用系统。为Cisco Unified IP电话和Jabber应用程序配置用户设置。 Cisco Self Care Portal 存在安全漏洞,攻击者可利用该漏洞可以通过Cisco Unified Communications Manager的Self Care Portal绕过限制,以升级权限。
CVSS Information
N/A
Vulnerability Type
N/A