漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Signiant - Manager+Agents XML External Entity (XXE)
Vulnerability Description
Signiant - Manager+Agents XML External Entity (XXE) - Extract internal files of the affected machine An attacker can read all the system files, the product is running with root on Linux systems and nt/authority on windows systems, which allows him to access and extract any file on the systems, such as passwd, shadow, hosts and so on. By gaining access to these files, attackers can steal sensitive information from the victims machine.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
Signiant Manager + Agents 代码问题漏洞
Vulnerability Description
Signiant Manager + Agents是美国Signiant公司的一种企业级加速文件传输解决方案。 Signiant Manager + Agents 存在代码问题漏洞,该产品在 Linux 系统上以 root 身份运行或者在 Windows 系统上以 NT/Authority 运行时,该漏洞允许攻击者访问和提取系统上的任何文件,从而窃取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A