Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authenticated Command Injection found in AOS-CX Administrative CLI Command
Vulnerability Description
A vulnerability in a custom binary used in AOS-CX Switches' CLI could allow an authenticated remote attacker with high privileges to perform command injection. Successful exploitation could allow an attacker to execute unauthorized commands.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
HPE AOS-CX 安全漏洞
Vulnerability Description
HPE AOS-CX是美国慧与(HPE)公司的一款用于数据中心、园区和边缘的网络操作系统。用于提供灵活创新的网络服务,提升网络性能。 HPE AOS-CX存在安全漏洞,该漏洞源于CLI中使用的自定义二进制文件存在命令注入,可能导致高权限经过身份验证的远程攻击者执行未授权命令。
CVSS Information
N/A
Vulnerability Type
N/A