Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1
Vulnerability Description
Audit records for OpenAPI requests may include sensitive information. This could lead to unauthorized accesses and privilege escalation.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
通过发送数据的信息暴露
Vulnerability Title
Nozomi Networks Guardian/CMC 安全漏洞
Vulnerability Description
Nozomi Networks Guardian/CMC是美国Nozomi Networks公司的一个中央管理控制台。 Nozomi Networks Guardian/CMC v23.4.1之前版本存在安全漏洞,该漏洞源于OpenAPI请求的审核记录可能包含敏感信息,从而导致未经授权的访问和权限升级。
CVSS Information
N/A
Vulnerability Type
N/A