漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to upload arbitrary files to an affected device. This vulnerability is due to improper validation of files that are uploaded to the web-based management interface. An attacker could exploit this vulnerability by sending a crafted file upload request to a specific API endpoint. A successful exploit could allow the attacker to upload arbitrary files to an affected system. To exploit this vulnerability, an attacker must have at least valid Config Managers credentials on the affected device.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Cisco Evolved Programmable Network Manager 代码问题漏洞
Vulnerability Description
Cisco Evolved Programmable Network Manager是美国思科(Cisco)公司的一套网络管理解决方案。 Cisco Evolved Programmable Network Manager存在代码问题漏洞,该漏洞源于对上传文件验证不当,可能导致上传任意文件。
CVSS Information
N/A
Vulnerability Type
N/A