Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Catalyst PON Series Switches Optical Network Terminal Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol is enabled Perform command injection Modify the configuration For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
Cisco Catalyst 安全漏洞
Vulnerability Description
Cisco Catalyst是美国思科(Cisco)公司的一系列交换机。 Cisco Catalyst Passive Optical Network Series Switches 存在安全漏洞,该漏洞源于Cisco Catalyst PON系列交换机ONT的web管理界面不正确的HTTPS输入验证造成的。攻击者可利用该漏洞通过向web管理界面发送精心设计的HTTPS请求来修改配置。
CVSS Information
N/A
Vulnerability Type
N/A