漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Insecure Permissions vulnerability in JumpServer GPLv3 v.3.8.0 allows a remote attacker to execute arbitrary code via bypassing the command filtering function. NOTE: this is disputed because command filtering is not intended to restrict what code can be run by authorized users who are allowed to execute files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
JumpServer 安全漏洞
Vulnerability Description
Jumpserver是中国杭州飞致云信息科技有限公司的一款开源堡垒机。 JumpServer GPLv3 v.3.8.0版本存在安全漏洞,该漏洞源于权限管理不当。攻击者利用该漏洞可以执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A