Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Keysight Geolocation Server Exposed Dangerous Method or Function
Vulnerability Description
In Keysight Geolocation Server v2.4.2 and prior, a low privileged attacker could create a local ZIP file containing a malicious script in any location. The attacker could abuse this to load a DLL with SYSTEM privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
暴露危险的方法或函数
Vulnerability Title
Keysight Technologies N6854A Geolocation server 代码问题漏洞
Vulnerability Description
Keysight Technologies N6854A Geolocation server是美国是德科技(Keysight Technologies)公司的一个地理定位服务器。 Keysight Geolocation Server v2.4.2及之前版本存在安全漏洞,该漏洞源于低权限攻击者可以在任何位置创建包含恶意脚本的本地ZIP文件,攻击者利用此漏洞可以使用系统权限加载DLL。
CVSS Information
N/A
Vulnerability Type
N/A