Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco DNA Spaces Connector Privilege Escalation Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root. These vulnerabilities are due to insufficient restrictions during the execution of affected CLI commands. An attacker could exploit these vulnerabilities by leveraging the insufficient restrictions during execution of these commands. A successful exploit could allow the attacker to elevate privileges from dnasadmin and execute arbitrary commands on the underlying operating system as root.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Cisco 多款产品操作系统命令注入漏洞
Vulnerability Description
Cisco DNA Spaces是美国思科(Cisco)公司的一套室内定位服务平台。 Cisco DNA Spaces Connector 2.3.1之前版本存在操作系统命令注入漏洞,攻击者可利用该漏洞目标系统上执行任意的操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A