漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
D-Link Nuclias Connect < v1.3.1.4 Directory Traversal to Arbitrary File Deletion
Vulnerability Description
D-Link Nuclias Connect firmware versions < 1.3.1.4 contain a directory traversal vulnerability within /api/web/dnc/global/database/deleteBackup due to improper sanitization of the deleteBackupList parameter. This can allow an authenticated attacker to delete arbitrary files impacting the integrity and availability of the system.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
D-Link Nuclias Connect 安全漏洞
Vulnerability Description
D-Link Nuclias Connect是中国友讯(D-Link)公司的一套无线网络集中管理系统。 D-Link Nuclias Connect 1.3.1.4之前版本存在安全漏洞,该漏洞源于对deleteBackupList参数清理不当,可能导致目录遍历攻击,影响系统完整性和可用性。
CVSS Information
N/A
Vulnerability Type
N/A