Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM webMethods Integration code execution
Vulnerability Description
IBM webMethods Integration 10.15 and 11.1 could allow an authenticated user with required execute Services to execute commands on the system due to the improper validation of format string strings passed as an argument from an external source.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用外部控制的格式字符串
Vulnerability Title
IBM webMethods Integration 格式化字符串错误漏洞
Vulnerability Description
IBM webMethods Integration是美国国际商业机器(IBM)公司的一个混合的企业 iPaaS。 IBM webMethods Integration 10.15版本和11.1版本存在格式化字符串错误漏洞,该漏洞源于对外部源传递的参数格式字符串验证不当,可能导致执行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A