Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege escalation in Guardian/CMC before 24.6.0
Vulnerability Description
A privilege escalation vulnerability may enable a service account to elevate its privileges. The sudo rules configured for a local service account were excessively permissive, potentially allowing administrative access if a malicious actor could execute arbitrary commands as that account. It is important to note that no such vector has been identified in this instance.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
带着不必要的权限执行
Vulnerability Title
Nozomi Guardian 安全漏洞
Vulnerability Description
Nozomi Guardian是美国的一款防护软件。 Nozomi Guardian存在安全漏洞,该漏洞源于sudo规则配置过于宽松,可能导致服务账户提升权限至管理员级别。
CVSS Information
N/A
Vulnerability Type
N/A