漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Command Injection vulnerability in Remote Support(RS) & Privilege Remote Access (PRA)
Vulnerability Description
A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow an attacker with existing administrative privileges to inject commands and run as a site user.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
BeyondTrust Privileged Remote Access 安全漏洞
Vulnerability Description
BeyondTrust Privileged Remote Access(BeyondTrust PRA)是美国BeyondTrust公司的一款特权远程访问软件。 BeyondTrust Privileged Remote Access存在安全漏洞。具有现有管理权限的攻击者利用该漏洞可以注入命令并以站点用户身份运行。
CVSS Information
N/A
Vulnerability Type
N/A