Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Nokia NetAct 22 through the Administration of Measurements website section. A malicious user can edit or add the templateName parameter in order to include malicious code, which is then downloaded as a .csv or .xlsx file and executed on a victim machine. Here, the /aom/html/EditTemplate.jsf and /aom/html/ViewAllTemplatesPage.jsf templateName parameter is used.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia NetAct 安全漏洞
Vulnerability Description
Nokia NetAct是芬兰诺基亚(Nokia)公司的一个网络管理系统。 Nokia NetAct 22版本存在安全漏洞,该漏洞源于允许攻击者编辑或添加templateName参数以包含恶意代码,然后将其下载为.csv或.xlsx文件并在受害计算机上执行。
CVSS Information
N/A
Vulnerability Type
N/A