漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Barracuda RMM < 2025.1.1 Service Center Absolute Path Traversal RCE
Vulnerability Description
Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not verify the URL defined in an attacker-controlled WSDL that is later loaded by the application. This can lead to arbitrary file write and remote code execution via webshell upload.
CVSS Information
N/A
Vulnerability Type
绝对路径遍历
Vulnerability Title
Barracuda Service Center 安全漏洞
Vulnerability Description
Barracuda Service Center是美国Barracuda公司的一个服务中心软件。 Barracuda Service Center 2025.1.1之前版本存在安全漏洞,该漏洞源于未验证攻击者控制的WSDL中定义的URL,可能导致任意文件写入和远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A