Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM PowerSC cross-resource origin sharing
Vulnerability Description
IBM PowerSC 1.3, 2.0, and 2.1 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Force ID: 275130.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
过度许可的跨域白名单
Vulnerability Title
IBM PowerSC 安全漏洞
Vulnerability Description
IBM PowerSC是美国国际商业机器(IBM)公司的一款用于IBM Power Systems服务器的安全和合规性解决方案。 IBM PowerSC 1.3 版本、2.0 版本和 2.1 版本存在安全漏洞,该漏洞源于使用跨源资源共享 (CORS),这可能允许攻击者执行特权操作并检索敏感信息,因为域名不仅限于受信任的域。
CVSS Information
N/A
Vulnerability Type
N/A