CNNVD-202507-159 Information

CNNVD ID

CNNVD-202507-159

Related CVE

CVE-2025-20308

• CNNVD Published: 2025-07-02

Description (Chinese)

Cisco Spaces Connector是美国思科（Cisco）公司的一个集成不同设备的系统。 Cisco Spaces Connector存在操作系统命令注入漏洞，该漏洞源于特定CLI命令执行限制不足，可能导致权限提升和任意命令执行。

Description (English)

Cisco Spaces Contractor is a system that integrates different equipment from Cisco. Cisco Spaces Connector has an operational system order that injects a loophole, which arises from inadequate enforcement restrictions on specific CLI orders, which may lead to enhanced authority and arbitrary enforcement.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

思科

Published

2025-07-02

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spaces-conn-privesc-kgD2CcDU

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-spaces-conn-privesc-kgD2CcDU