漏洞标题
思科SD-WAN软件特权提升漏洞
漏洞描述信息
思科SD-WAN软件特权提升漏洞
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Cisco SD-WAN Software Privilege Escalation Vulnerability
漏洞描述信息
A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to a utility that is running on an affected system. A successful exploit could allow the attacker to gain root privileges.
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
特权管理不恰当
漏洞标题
Cisco SD-WAN vManage Software 安全漏洞
漏洞描述信息
Cisco SD-WAN vManage Software是美国思科(Cisco)公司的一款用于SD-WAN(软件定义广域网络)解决方案的管理软件。 Cisco SD-WAN 存在安全漏洞,该漏洞允许允许经过身份验证的本地攻击者提升特权,在基础操作系统上进行root用户操作。
CVSS信息
N/A
漏洞类别
其他