漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cisco SD-WAN vManage Authorization Bypass Vulnerability
Vulnerability Description
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an affected system. This vulnerability exists because the affected software has insufficient input validation for certain commands. An attacker could exploit this vulnerability by sending crafted requests to the affected commands of an affected system. A successful exploit could allow the attacker to bypass authorization checking and gain restricted access to the configuration data of the affected system.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco?SD-WAN vManage Software 输入验证错误漏洞
Vulnerability Description
Cisco?SD-WAN vManage是美国思科(Cisco)公司的一款可提供软件定义网络功能的软件。该软件为网络虚拟化的一种方式。 Cisco?SD-WAN vManage Software 存在安全漏洞,该漏洞源于受影响的软件对某些命令的输入验证不足。攻击者可利用该漏洞绕过授权检查,获得对受影响系统的配置数据的受限访问。
CVSS Information
N/A
Vulnerability Type
N/A