Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Control Center external service interaction
Vulnerability Description
IBM Control Center 6.2.1 through 6.3.1 is vulnerable to an external service interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary domain names. By submitting suitable payloads, an attacker can cause the application server to attack other systems that it can interact with.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
交互错误
Vulnerability Title
IBM Control Center 安全漏洞
Vulnerability Description
IBM Control Center是美国国际商业机器(IBM)公司的一个集中式监控和管理系统。 IBM Control Center 6.2.1至6.3.1版本存在安全漏洞,该漏洞源于用户输入验证不当,可能导致远程攻击者诱导应用程序执行服务器端DNS查询或HTTP请求。
CVSS Information
N/A
Vulnerability Type
N/A