Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. An attacker with administrative privileges could exploit this vulnerability by running a system command containing directory traversal character sequences to target an arbitrary file. A successful exploit could allow the attacker to delete arbitrary files from the system, including files owned by root.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
路径遍历:’../filedir’
Vulnerability Title
Cisco SD-WAN vManage 路径遍历漏洞
Vulnerability Description
Cisco SD-WAN vManage是美国思科(Cisco)公司的一个高度可定制的仪表板。可简化和自动化 Cisco SD-WAN 的部署、配置、管理和操作。 Cisco SD-WAN vManage 存在安全漏洞,该漏洞源于系统命令中的目录遍历字符序列过滤不当,攻击者利用该漏洞可能从系统中删除任意文件,包括root拥有的文件。
CVSS Information
N/A
Vulnerability Type
N/A