漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions. A user who has the ability to run commands as the `daemon` user on a sipXcom server can overwrite a service file, and escalate their privileges to `root`.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CoreDial sipXcom sipXopenfire 操作系统命令注入漏洞
Vulnerability Description
CoreDial sipXcom sipXopenfire是美国CoreDial公司的一个电信应用程序。 CoreDial sipXcom sipXopenfire 21.04及之前版本存在操作系统命令注入漏洞,该漏洞源于弱文件权限,攻击者利用该漏洞可以以系统root用户身份执行命令。
CVSS Information
N/A
Vulnerability Type
N/A