Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Logs manipulation in BotSense
Vulnerability Description
Incorrect string encoding vulnerability in NASK - PIB BotSense allows injection of an additional field separator character or value in the content of some fields of the generated event. A field with additional field separator characters or values can be included in the "extraData" field.This issue affects BotSense in versions before 2.8.0.
CVSS Information
N/A
Vulnerability Type
值分隔符转义处理不恰当
Vulnerability Title
NASK PIB BotSense 安全漏洞
Vulnerability Description
NASK PIB BotSense是NASK公司的一个金融部门保护系统。 NASK PIB BotSense 2.8.0之前版本存在安全漏洞,该漏洞源于字符串编码错误,可能导致在生成事件的部分字段中注入额外的字段分隔符。
CVSS Information
N/A
Vulnerability Type
N/A