Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user's environment.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Vmware VMware vRealize Log Insight 注入漏洞
Vulnerability Description
Vmware VMware vRealize Log Insight是美国威睿(Vmware)公司的一套集中式日志管理解决方案。该产品支持日志整理和日志分析等功能。 VMware vRealize Log Insight 存在注入漏洞,经过身份验证的攻击者可以通过CSV表嵌入不受信任的数据。
CVSS Information
N/A
Vulnerability Type
N/A