漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The wguest account could execute commands by injecting into PostgreSQL trigger functions. This allowed privilege escalation from the wguest user to the postgres user.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Unitrends Backup 注入漏洞
Vulnerability Description
Unitrends Backup是消除数据丢失、 勒索软件和风险。 Kaseya Unitrends存在注入漏洞,该漏洞源于在10.5.5之前在Kaseya Unitrends备份设备中发现了一个问题。世界可写文件允许本地用户以apache用户的身份执行任意代码,从而导致权限升级。
CVSS Information
N/A
Vulnerability Type
N/A