发布日期:2023-03-03
更新日期:2023-05-23
受影响系统:
Cisco Cisco Finesse
描述:
CVE(CAN) ID: CVE-2023-20088
Cisco Finesse是美国思科(Cisco)公司的一套呼叫中心管理软件。
Cisco Finesse存在授权错误漏洞,该漏洞源于反向代理未对IP地址进行正确过滤,未经身份认证的远程攻击者可利用该漏洞通过向反向代理发送请求导致拒绝服务。
< *链接:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-proxy
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-finesse-proxy-dos-vY5dQhrV)以及相应补丁:
cisco-sa-finesse-proxy-dos-vY5dQhrV:Cisco Finesse Reverse Proxy VPN-less Access to Finesse Desktop Denial of Service Vulnerability
链接:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-proxy
浏览次数:44
严重程度:0(网友投票)
