Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco AppDynamics Controller Authorization Bypass Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco AppDynamics Controller Software could allow an unauthenticated, remote attacker to access a configuration file and the login page for an administrative console that they would not normally have authorization to access. This vulnerability is due to improper authorization checking for HTTP requests that are submitted to the affected web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected instance of AppDynamics Controller. A successful exploit could allow the attacker to access the login page for an administrative console. AppDynamics has released software updates that address this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
自定义URL方案处理程序中的授权不正确
Vulnerability Title
Cisco AppDynamics Controller 安全漏洞
Vulnerability Description
Cisco AppDynamics Controller是美国思科(Cisco)公司的通过跨高度分布式应用程序环境的精确跟踪和分析来监控和分析全栈数据。 Cisco AppDynamics Controller 存在安全漏洞,该漏洞源于对提交到受影响的基于 Web 的管理界面的 HTTP 请求进行不正确的授权检查。未经身份验证的远程攻击者利用该漏洞能够访问他们通常无权访问的管理控制台的配置文件和登录页面。
CVSS Information
N/A
Vulnerability Type
N/A