Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Securden Unified PAM Path Traversal In File Upload
Vulnerability Description
A path traversal vulnerability in unauthenticated upload functionality allows a malicious actor to upload binaries and scripts to the server’s configuration and web root directories, achieving remote code execution on the Unified PAM server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Securden Unified PAM 安全漏洞
Vulnerability Description
Securden Unified PAM是美国Securden公司的一个特权访问管理软件。 Securden Unified PAM存在安全漏洞,该漏洞源于未经验证的文件上传功能存在路径遍历,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A