Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross Site Request Forgery (CSRF) vulnerability in Chalet application in Extreme Networks Switch Engine (EXOS) before 32.5.1.5, fixed in 31.7.2 and 32.5.1.5 allows attackers to run arbitrary code and cause other unspecified impacts via /jsonrpc API.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Extreme Networks Switch Engine 跨站请求伪造漏洞
Vulnerability Description
Extreme Networks Switch Engine(EXOS)是美国极进网路(Extreme Networks)公司的一款交换机引擎。 Extreme Networks Switch Engine 32.5.1.5之前版本存在安全漏洞,该漏洞源于Chalet应用程序存在跨站请求伪造(CSRF)漏洞。攻击者利用该漏洞通过/jsonrpc API运行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A