Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A LDAP injection vulnerability exists in Tenable.sc due to improper validation of user-supplied input before returning it to users. An authenticated attacker could generate data in Active Directory using the application account through blind LDAP injection.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tenable.Sc 注入漏洞
Vulnerability Description
Tenable Network Security Tenable.Sc是美国Tenable Network Security公司的一套漏洞分析解决方案。该产品支持实时漏洞评估和管理等。 Tenable.Sc 存在安全漏洞,该漏洞源于其数据在返回给用户之前对用户提供的输入进行了不恰当的验证允许经过身份验证的攻击者可以使用应用程序帐户通过LDAP盲注入在活动目录中生成数据。
CVSS Information
N/A
Vulnerability Type
N/A