Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an authenticated non-admin local user to overwrite system files with SIR backup files, which can potentially cause a system crash. This was achieved by adding a malicious entry to the registry under the Trellix SIR registry folder or via policy or with a junction symbolic link to files that the user would not normally have permission to acces
CVSS Information
N/A
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Vulnerability Title
Trellix System Information Reporter 安全漏洞
Vulnerability Description
Trellix System Information Reporter是美国Trellix公司的一个系统信息手机工具。 Trellix System Information Reporter 1.0.3及之前版本存在安全漏洞,该漏洞源于路径或符号链接操作问题,可能导致系统文件覆盖。
CVSS Information
N/A
Vulnerability Type
N/A