Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Secure Email Gateway, Cisco Secure Email and Web Appliance and Cisco Secure Web Appliance SNMP Polling Information Disclosure Vulnerability
Vulnerability Description
A vulnerability in Simple Network Management Protocol (SNMP) polling for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an authenticated, remote attacker to obtain confidential information about the underlying operating system. This vulnerability exists because the appliances do not protect confidential information at rest in response to SNMP poll requests. An attacker could exploit this vulnerability by sending a crafted SNMP poll request to the affected appliance. A successful exploit could allow the attacker to discover confidential information that should be restricted. To exploit this vulnerability, an attacker must have the configured SNMP credentials.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Cisco多款产品 信息泄露漏洞
Vulnerability Description
Cisco Secure Web Appliance等都是美国思科(Cisco)公司的产品。Cisco Secure Web Appliance是一个应用程序。Cisco Secure Email and Web Manager是一个安全电子邮件和 Web 管理器。Cisco Secure Email Gateway是一个安全电子邮件网关软件。 Cisco多款产品存在信息泄露漏洞,该漏洞源于允许经过身份验证的远程攻击者通过特制SNMP请求获取操作系统机密信息。以下产品受到影响:Cisco Secure W
CVSS Information
N/A
Vulnerability Type
N/A