Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context of the server. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
CWE-1336
Vulnerability Title
F5 Traffix SDC 安全漏洞
Vulnerability Description
F5 Traffix Signaling Delivery Controller(F5 Traffix SDC)是美国F5公司的一种信令交付控制器。用于为运营商提供全面的连接性、无限的可扩展性和全面的控制。 F5 Traffix SDC 5.2.x 到5.2.2版本和 5.1.x 到5.1.35版本存在安全漏洞,该漏洞源于Traffix SDC 配置实用程序的未公开页面中存在一个存储的跨站点模板注入漏洞。攻击者利用该漏洞可以执行模板服务器上下文中的语言特定指令。
CVSS Information
N/A
Vulnerability Type
N/A