关于 CVE-2010-0600 的漏洞信息

1. 漏洞描述
From NVD
Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 does not properly restrict network access to an unspecified configuration file, which allows remote attackers to read passwords and unspecified other account details via a (1) XML RPC or (2) XML RPC over HTTPS session, aka Bug ID CSCtb83512.
From 神龙GPT (AIGC)
在Cisco网络构建Mediator NBM-2400和NBM-4800以及Richards-Zeta Mediator 2500中,在未指定版本1.5.1.build.14-eng之前、2.2.1.dev.1之前和3.0.9.release.1之前,这些平台的Cisco网络构建Mediator NBM-2400和NBM-4800以及Richards-Zeta Mediator 2500并未正确限制对未指定配置文件的网络访问,这使得远程攻击者可以通过(1)XML RPC或(2)XML RPC over HTTPS会话读取密码和其他未指定账户详细信息,即Bug ID CSCtb83512。
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference