漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
IBM ICP - Voice Gateway XML injection
Vulnerability Description
IBM ICP - Voice Gateway 1.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow remote attacker to send specially crafted XML statements, which would allow them to attacker to view or modify information in the XML document.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
XML注入(XPath盲注)
Vulnerability Title
IBM ICP Voice Gateway 安全漏洞
Vulnerability Description
IBM ICP Voice Gateway是美国国际商业机器(IBM)公司的一项服务,能够构建利用 Assistant、Text to Speech 和 Speech to Text 的应用程序 IBM ICP Voice Gateway存在安全漏洞,该漏洞源于处理特殊构造的XML语句不当,允许远程攻击者查看或修改XML文档中的信息。
CVSS Information
N/A
Vulnerability Type
N/A