Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Intersight Virtual Appliance IPv4 and IPv6 Forwarding Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external management interface. An attacker could exploit these vulnerabilities by sending specific traffic to this interface on an affected device. A successful exploit could allow the attacker to access sensitive internal services and make configuration changes on the affected device.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
Cisco Intersight 安全漏洞
Vulnerability Description
Cisco Intersight是美国思科(Cisco)公司的一个应用平台。提供了智能管理级别,使 IT 组织能够以比前几代工具更先进的方式分析、简化和自动化其环境。 Cisco Intersight Virtual Appliance 存在安全漏洞,未经身份验证的相邻攻击者可利用该漏洞从外部接口访问敏感的内部服务。
CVSS Information
N/A
Vulnerability Type
N/A