漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Missing authentication for critical function in AssetView prior to Ver.13.2.0 allows a remote unauthenticated attacker with some knowledge on the system configuration to upload a crafted configuration file to the managing server, which may result in the managed clients to execute arbitrary code with the administrative privilege.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Hammock AssetView 访问控制错误漏洞
Vulnerability Description
Hammock AssetView是日本Hammock公司的一种 IT 资产管理工具和信息资产管理软件。 Hammock AssetView 存在安全漏洞,远程攻击者可能会将精心制作的配置文件上传到管理服务器,从而导致受管客户端以管理权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A