Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Container Storage Modules 1.2 contains an OS command injection in goiscsi and gobrick libraries. A remote authenticated malicious user with low privileges could exploit this vulnerability leading to to execute arbitrary OS commands on the affected system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Dell Container Storage Modules 操作系统命令注入漏洞
Vulnerability Description
Dell Container Storage Modules是美国戴尔(Dell)公司的一组模块。旨在提供超出容器存储可用功能的附加功能。 Dell Container Storage Modules 1.2版本存在安全漏洞,该漏洞源于在goiscsi和gobrick库中包含操作系统命令注入,具有低权限的远程身份验证恶意用户可以利用此漏洞在受影响的系统上执行任意操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A