Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Selenium Selenium Grid (formerly Selenium Standalone Server) Fixed in 4.0.0-alpha-7 is affected by: DNS rebinding. The impact is: execute arbitrary code (remote). The component is: WebDriver endpoint of Selenium Grid / Selenium Standalone Server. The attack vector is: Triggered by browsing to to a malicious remote web server. The WebDriver endpoint of Selenium Server (Grid) is vulnerable to DNS rebinding. This can be used to execute arbitrary code on the machine.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Selenium Grid 跨站请求伪造漏洞
Vulnerability Description
Selenium Grid是Selenium社区的一个智能代理服务器。可以轻松地在多台机器上并行运行测试。 Selenium Grid 存在安全漏洞,该漏洞源于组件Selenium Grid/Selenium Standalone Server DNS重新绑定存在问题。攻击者可以通过恶意远程Web服务器利用该漏洞实现任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A