Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary \u2018Host\u2019 header values to poison a web cache or trigger redirections.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
对HTTP头部进行脚本语法转义处理不恰当
Vulnerability Title
Dell EMC Data Protection Central 安全漏洞
Vulnerability Description
Dell EMC Data Protection Central是美国戴尔(Dell)公司的一个管理控制台。用于数据保护。 Dell EMC Data Protection Central 19.1至19.7版本存在安全漏洞,该漏洞源于未经身份验证的远程攻击者可能会通过注入任意标头值来破坏web缓存或触发重定向实现主机头注入。
CVSS Information
N/A
Vulnerability Type
N/A