漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Authenticated Session Hijacking Allows Unauthorized Access in Network Switching Software
Vulnerability Description
A vulnerability in the web management interface of the AOS-CX OS user authentication service could allow an authenticated remote attacker to hijack an active user session. Successful exploitation may enable the attacker to maintain unauthorized access to the session, potentially leading to the view or modification of sensitive configuration data.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
N/A
Vulnerability Title
HPE Aruba Networking AOS-CX 安全漏洞
Vulnerability Description
HPE Aruba Networking AOS-CX是美国HPE公司的一系列交换机设备。 HPE Aruba Networking AOS-CX存在安全漏洞,该漏洞源于用户认证服务会话劫持漏洞,可能导致未经授权的会话访问。
CVSS Information
N/A
Vulnerability Type
N/A