漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cisco Duo Authentication Proxy Information Disclosure Vulnerability
Vulnerability Description
A vulnerability in the debug logging function of Cisco Duo Authentication Proxy could allow an authenticated, high-privileged, remote attacker to view sensitive information in a system log file. This vulnerability is due to insufficient masking of sensitive information before it is written to system log files. An attacker could exploit this vulnerability by accessing logs on an affected system. A successful exploit could allow the attacker to view sensitive information that should be restricted.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Cisco Duo Authentication Proxy 信息泄露漏洞
Vulnerability Description
Cisco Duo Authentication Proxy是美国思科(Cisco)公司的一个本地安全服务。 Cisco Duo Authentication Proxy存在信息泄露漏洞,该漏洞源于系统日志文件敏感信息掩码不足,可能导致高权限用户查看敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A