Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authentication Bypass in Web Interface allows Unauthenticated Admin Password Reset
Vulnerability Description
A vulnerability has been identified in the web-based management interface of AOS-CX switches that could potentially allow an unauthenticated remote actor to circumvent existing authentication controls. In some cases this could enable resetting the admin password.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
HPE AOS-CX 安全漏洞
Vulnerability Description
HPE AOS-CX是美国慧与(HPE)公司的一款用于数据中心、园区和边缘的网络操作系统。用于提供灵活创新的网络服务,提升网络性能。 HPE AOS-CX存在安全漏洞,该漏洞源于基于Web的管理界面存在身份验证控制绕过,可能导致未经身份验证的远程攻击者重置管理员密码。
CVSS Information
N/A
Vulnerability Type
N/A