Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N-central Syslog Configuration Insecure Direct Object Reference
Vulnerability Description
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
访问控制不恰当
Vulnerability Title
N‑able N-Central 安全漏洞
Vulnerability Description
N‑able N-Central是N‑able公司的一个功能强大、可定制的远程监控和管理平台。 N‑able N-Central 2025.2之前版本存在安全漏洞,该漏洞源于已验证用户可读写修改syslog配置。
CVSS Information
N/A
Vulnerability Type
N/A