Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Catalyst Center Privilege Escalation Vulnerability
Vulnerability Description
A vulnerability in Cisco Catalyst Center Virtual Appliance could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected system. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by submitting a crafted HTTP request to an affected system. A successful exploit could allow the attacker to perform unauthorized modifications to the system, including creating new user accounts or elevating their own privileges on an affected system. To exploit this vulnerability, the attacker must have valid credentials for a user account with at least the role of Observer.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
Cisco Catalyst Center Virtual Appliance 访问控制错误漏洞
Vulnerability Description
Cisco Catalyst Center Virtual Appliance是美国思科(Cisco)公司的一个网络控制器和自动化管理平台。 Cisco Catalyst Center Virtual Appliance存在访问控制错误漏洞,该漏洞源于用户输入验证不足,可能导致远程攻击者提升权限至管理员。
CVSS Information
N/A
Vulnerability Type
N/A