Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BlueCat Device Registration Portal 2.2 allows XXE attacks that exfiltrate single-line files. A single-line file might contain credentials, such as "machine example.com login daniel password qwerty" in the documentation example for the .netrc file format. NOTE: 2.x versions are no longer supported. There is no available information about whether any later version is affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BlueCat Networks Device Registration Portal 代码问题漏洞
Vulnerability Description
BlueCat Networks Device Registration Portal是BlueCat Networks公司的一个独立的应用程序。用于审核和跟踪所有尝试连接到网络的设备。 BBlueCat Networks Device Registration Portal 2.2版本存在安全漏洞,该漏洞源于允许渗漏单行文件的XXE攻击,单行文件可能包含凭据。
CVSS Information
N/A
Vulnerability Type
N/A