Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Signiant - Manager+Agents XML External Entity (XXE)
Vulnerability Description
Signiant - Manager+Agents XML External Entity (XXE) - Extract internal files of the affected machine An attacker can read all the system files, the product is running with root on Linux systems and nt/authority on windows systems, which allows him to access and extract any file on the systems, such as passwd, shadow, hosts and so on. By gaining access to these files, attackers can steal sensitive information from the victims machine.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
Signiant Manager + Agents 代码问题漏洞
Vulnerability Description
Signiant Manager + Agents是美国Signiant公司的一种企业级加速文件传输解决方案。 Signiant Manager + Agents 存在代码问题漏洞,该产品在 Linux 系统上以 root 身份运行或者在 Windows 系统上以 NT/Authority 运行时,该漏洞允许攻击者访问和提取系统上的任何文件,从而窃取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A