Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Secure Network Analytics Manager Server-Side Template Injection Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Secure Network Analytics Manager and Cisco Secure Network Analytics Virtual Manager could allow an authenticated, remote attacker with valid administrative credentials to execute arbitrary commands as root on the underlying operating system. This vulnerability is due to insufficient input validation in specific fields of the web-based management interface. An attacker with valid administrative credentials could exploit this vulnerability by sending crafted input to an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with root privileges.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
输出中的特殊元素转义处理不恰当(注入)
Vulnerability Title
Cisco Secure Network Analytics Manager和Cisco Secure Network Analytics Virtual Manager 注入漏洞
Vulnerability Description
Cisco Secure Network Analytics Manager和Cisco Secure Network Analytics Virtual Manager都是美国思科(Cisco)公司的产品。Cisco Secure Network Analytics Manager是一个安全网络分析管理器。Cisco Secure Network Analytics Virtual Manager是一个安全网络分析虚拟管理器。 Cisco Secure Network Analytics Manager
CVSS Information
N/A
Vulnerability Type
N/A