N/A

AMP Application Deployment Service in CubeCoders AMP 2.1.x before 2.1.1.2 allows a remote, authenticated user to open ports in the local system firewall by crafting an HTTP(S) request directly to the applicable API endpoint (despite not having permission to make changes to the system's network configuration).

N/A

N/A

CubeCoders AMP 安全漏洞

AMP是一个应用软件。用于跟踪CubeCoders AMP平台内的所有问题和错误。 CubeCoders AMP 2.1.x系列2.1.1.2之前版本存在安全漏洞，该漏洞允许通过身份验证的远程用户通过直接向适用的API端点编写HTTP(S)请求来开放本地系统防火墙中的端口。

N/A

N/A