漏洞标题
Cisco IOS XE 无线控制器软件 for Catalyst 9000 Family SNMP信息 Disclosure 漏洞
漏洞描述信息
Cisco Catalyst 9000 系列家族Cisco IOS XE无线控制器软件SNMP信息泄露漏洞
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability
漏洞描述信息
A vulnerability in the Simple Network Management Protocol (SNMP) of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an authenticated, remote attacker to access sensitive information. This vulnerability is due to insufficient restrictions that allow a sensitive configuration detail to be disclosed. An attacker could exploit this vulnerability by retrieving data through SNMP read-only community access. A successful exploit could allow the attacker to view Service Set Identifier (SSID) preshared keys (PSKs) that are configured on the affected device.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
漏洞类别
通过数据查询的敏感数据暴露
漏洞标题
Cisco IOS XE Wireless Controller software 安全漏洞
漏洞描述信息
Cisco IOS XE Wireless Controller software是美国思科(Cisco)公司的一个无线局域网控制器。提供一个管理网络功能 Cisco IOS XE Wireless Controller software 存在安全漏洞,该漏洞源于没有足够的限制,导致敏感配置详细信息无法访问披露。攻击者可以通过SNMP检索数据来利用此漏洞,可能允许经过身份验证的远程攻击者访问敏感信息。
CVSS信息
N/A
漏洞类别
其他