Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4
Vulnerability Description
Path Traversal vulnerability when changing timezone using web GUI of Nozomi Networks Guardian, CMC allows an authenticated administrator to read-protected system files. This issue affects: Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. Nozomi Networks CMC 20.0.7.3 version 20.0.7.3 and prior versions.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
路径遍历:’../filedir’
Vulnerability Title
Nozomi Networks Guardian 路径遍历漏洞
Vulnerability Description
Nozomi Networks Guardian是瑞士Nozomi Networks公司的一款物联网设备和软件检查系统。 Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. Nozomi Networks CMC 20.0.7.3 version 20.0.7.3 and prior versions 存在安全漏洞,该漏洞源于CMC允许通过认证的管理员读取受保护的系统文件。
CVSS Information
N/A
Vulnerability Type
N/A