Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Small Business 220 Series Smart Switches Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in the web-based management interface of Cisco Small Business 220 Series Smart Switches could allow an attacker to do the following: Hijack a user session Execute arbitrary commands as a root user on the underlying operating system Conduct a cross-site scripting (XSS) attack Conduct an HTML injection attack For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
认证机制不恰当
Vulnerability Title
Cisco Small Business 220 Series Smart Switches 授权问题漏洞
Vulnerability Description
Cisco Small Business 220 Series Smart Switches是美国思科(Cisco)公司的一款小型智能交换机设备。 Cisco Small Business 220 系列智能交换机基于 Web 的管理界面存在授权问题漏洞,该漏洞可能允许未经认证的远程攻击者绕过认证保护,获得对该接口的未经授权访问。攻击者可利用该漏洞可以获得被劫持的会话帐户的特权。
CVSS Information
N/A
Vulnerability Type
N/A