Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Duo Authentication Proxy Information Disclosure Vulnerability
Vulnerability Description
A vulnerability in the debug logging function of Cisco Duo Authentication Proxy could allow an authenticated, high-privileged, remote attacker to view sensitive information in a system log file. This vulnerability is due to insufficient masking of sensitive information before it is written to system log files. An attacker could exploit this vulnerability by accessing logs on an affected system. A successful exploit could allow the attacker to view sensitive information that should be restricted.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Cisco Duo Authentication Proxy 信息泄露漏洞
Vulnerability Description
Cisco Duo Authentication Proxy是美国思科(Cisco)公司的一个本地安全服务。 Cisco Duo Authentication Proxy存在信息泄露漏洞,该漏洞源于系统日志文件敏感信息掩码不足,可能导致高权限用户查看敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A