Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Authorization in the installer for the EOL OVA based connect component
Vulnerability Description
An Improper Authorization vulnerability was identified in the EOL OVA based connect component which is deployed for installation purposes in the customer internal network. Under certain conditions, this could allow a bad actor to gain unauthorized access to the local db containing weakly hashed credentials of the installer. This EOL component was deprecated in September 2023 with end of support extended till January 2024.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
Saviynt EOL OVA(Saviynt End of Life OVA) 安全漏洞
Vulnerability Description
Saviynt EOL OVA(Saviynt End of Life OVA)是Saviynt公司的一个生命周期组件。 Saviynt EOL OVA(Saviynt End of Life OVA)存在安全漏洞,该漏洞源于授权不当,可能导致未授权访问本地数据库。
CVSS Information
N/A
Vulnerability Type
N/A