漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0
Vulnerability Description
A path traversal vulnerability was discovered in the Import Arc data archive functionality due to insufficient validation of the input file. An authenticated user with limited privileges, by uploading a specifically-crafted Arc data archive, can potentially write arbitrary files in arbitrary paths, altering the device configuration and/or affecting its availability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Nozomi Networks Guardian 路径遍历漏洞
Vulnerability Description
Nozomi Networks Guardian是美国Nozomi Networks公司的一款防护软件。 Nozomi Networks Guardian存在路径遍历漏洞,该漏洞源于输入文件验证不足,可能导致路径遍历攻击。
CVSS Information
N/A
Vulnerability Type
N/A