Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient Validation of Input while user creation
Vulnerability Description
The web application allows user input to pass unfiltered to a command executed on the underlying operating system. An attacker with high privileged access (administrator) to the application has the potential execute commands on the operating system under the context of the webserver. The vulnerable component is bound to the network stack and the set of possible attackers extends up to and including the entire Internet. Has the potential to inject command while creating a new User from User Management.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia WaveSuite NOC 安全漏洞
Vulnerability Description
Nokia WaveSuite NOC是芬兰诺基亚(Nokia)公司的一个光网络统一运维平台。 Nokia WaveSuite NOC存在安全漏洞,该漏洞源于允许未过滤的用户输入传递到底层操作系统执行的命令,可能导致远程命令执行。
CVSS Information
N/A
Vulnerability Type
N/A