漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
HCL Unica Platform is vulnerable to a privilege escalation by unauthorized group assignation
Vulnerability Description
A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator. It is possible that an attacker could potentially escalate their privileges.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
HCL Unica Platform 安全漏洞
Vulnerability Description
HCL Technologies HCL Unica Platform是美国HCL Technologies公司的一个先进的企业自动化营销平台。无需人工操作即可处理日常营销任务并捕获最有效的潜在客户。 HCL Unica Platform 12.1.1之前版本存在安全漏洞,该漏洞源于用户可以通过重复使用管理员发出的POST请求将自己分配到任意组以提升权限。
CVSS Information
N/A
Vulnerability Type
N/A