Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Agiloft local privilege escalation via default credentials
Vulnerability Description
Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
CWE-1392
Vulnerability Title
Agiloft 安全漏洞
Vulnerability Description
Agiloft是美国Agiloft公司的一个合同管理平台。 Agiloft Release 28版本存在安全漏洞,该漏洞源于多个账户使用默认凭据,可能导致本地权限提升。
CVSS Information
N/A
Vulnerability Type
N/A