Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Routed Passive Optical Network Cleartext Password Vulnerability
Vulnerability Description
A vulnerability in the storage method of the PON Controller configuration file could allow an authenticated, local attacker with low privileges to obtain the MongoDB credentials. This vulnerability is due to improper storage of the unencrypted database credentials on the device that is running Cisco IOS XR Software. An attacker could exploit this vulnerability by accessing the configuration files on an affected system. A successful exploit could allow the attacker to view MongoDB credentials.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Vulnerability Type
明文存储口令
Vulnerability Title
Cisco IOS XR 安全漏洞
Vulnerability Description
Cisco IOS XR是美国思科(Cisco)公司的一套为其网络设备开发的操作系统。 Cisco IOS XR存在安全漏洞,该漏洞源于配置文件的存储方法中存在漏洞,可能允许经过身份验证的本地低权限攻击者获取 MongoDB 凭据。
CVSS Information
N/A
Vulnerability Type
N/A