The image-upgrade implementation on Cisco Desktop Collaboration Experience (aka Collaboration Desk Experience or DX) DX650 endpoints allows local users to execute arbitrary OS commands via an unspecified parameter, aka Bug ID CSCus38947.
From 神龙GPT (AIGC)
Cisco桌面协作体验(也被称为协作桌面体验或 DX) DX650端点的图像升级实现允许本地用户通过未定义参数执行任意操作系统命令,也被称为Bug ID CSCus38947。