Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO
Vulnerability Description
Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
Arista DANZ Monitoring Fabric 安全漏洞
Vulnerability Description
Arista DANZ Monitoring Fabric是美国Arista公司的一个流量监控、安全、性能分析平台。 Arista DANZ Monitoring Fabric存在安全漏洞,该漏洞源于可绕过升级映像的加密验证,可能导致特制文件被植入升级ISO。
CVSS Information
N/A
Vulnerability Type
N/A