关键漏洞信息 CVE: CVE-2017-20023 CVSS Score: 7.4 Vulnerability Type: Privileges Management Summary Affected Component: Network Config Impact: Manipulation of an unknown function leads to privileges management issues. Severity: Critical Remote Exploit: Possible Details CWE: CWE-269 Component Functionality: Unknown functionality of Network Config is improperly handling privileges. Consequence: Affects confidentiality, integrity, and availability. Discovery Date: 03/22/2017 Finder: T. Weber & SEC Consult Vulnerability Lab Public Notification: seclists.org Attack Technique: T1068 (MITRE ATT&CK) Recommendation: Upgrade the affected component as no exploit is publicly available.