Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the installer script of Cisco AppDynamics PHP Agent could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient permissions that are set by the PHP Agent Installer on the PHP Agent install directory. An attacker could exploit this vulnerability by modifying objects in the PHP Agent install directory, which would run with the same privileges as PHP. A successful exploit could allow a lower-privileged attacker to elevate their privileges to root on an affected device.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
特权管理不恰当
Vulnerability Title
Cisco AppDynamics PHP Agent 安全漏洞
Vulnerability Description
Cisco AppDynamics PHP Agent是美国思科(Cisco)公司的一个代理程序,用于监控 PHP 应用程序的性能。 Cisco AppDynamics PHP Agent 存在安全漏洞,该漏洞源于对 PHP Agent 安装目录设置的权限不足。
CVSS Information
N/A
Vulnerability Type
N/A