漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
The server identity check mechanism for firmware upgrade performed via command shell is insecurely implemented potentially allowing an attacker to perform a Man-in-the-middle attack. This security issue has been fixed in the latest firmware version of Eaton Network M3 which is available on the Eaton download center.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:L
Vulnerability Type
证书验证不恰当
Vulnerability Title
Eaton Network M3 安全漏洞
Vulnerability Description
Eaton Network M3是美国伊顿(Eaton)公司的一个安全性网络接口卡。 Eaton Network M3存在安全漏洞,该漏洞源于通过命令外壳执行的固件升级服务器身份检查机制不安全,可能导致中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A