ID
VAR-202403-2944
TITLE
There is a command execution vulnerability (CNVD-2022-53245) in the operation and maintenance audit system of Beijing COSCO Kirin Technology Co., Ltd.
Trust: 0.6
DESCRIPTION
Beijing COSCO Kirin Technology Co., Ltd. is a software development company focusing on research and development. The company's main products are COSCO Kirin bastion host, Kirin SSL VPN, Kirin dynamic password system, Kirin cloud desktop, etc. COSCO Kirin bastion machines mainly operate in cloud markets such as Tencent Cloud, Alibaba Cloud, Huawei Cloud, and Inspur Cloud. There is a command execution vulnerability in the operation and maintenance audit system of Beijing COSCO Kirin Technology Co., Ltd. An attacker can use this vulnerability to gain control of the server.
Trust: 0.6
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cosco kirin | model: | operation and maintenance audit system | scope: | eq | version: | 1.7-2021-0718 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | Patch for There is a command execution vulnerability (CNVD-2022-53245) in the operation and maintenance audit system of Beijing COSCO Kirin Technology Co., Ltd. | url: | https://www.cnvd.org.cn/patchinfo/show/532976 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2022-53245 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2022-53245 |
LAST UPDATE DATE
2024-03-29T22:39:26.466000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2022-53245 | date: | 2024-03-15T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2022-53245 | date: | 2024-03-15T00:00:00 |