关于NC系统ConfigResourceServlet存在命令执行漏洞修复方案的公告
漏洞概述
关于NC系统ConfigResourceServlet存在命令执行漏洞修复方案
关于NC系统ConfigResourceServlet存在命令执行漏洞,利用漏洞可以任意执行服务器命令,用友研发部已经紧急提供对应NC、NC Cloud各版本解决方案。
影响版本: NC63 / NC65 / NC Cloud 1903 / NC Cloud 1909 / NC Cloud2020.05 / NC Cloud 2021.05
解决方案:
打对应补丁,重启服务,各版本补丁下载地址如下:
NC 63(补丁编码: NCM_NC6.3_000_109902_20211219_GP_914481000): https://dsp.yonyou.com/patchcenter/patchdetail/10211639914481738808/0/2
NC 65(补丁编码: NCM_NC6.5_000_109902_20211219_GP_914534396):
https://dsp.yonyou.com/patchcenter/patchdetail/10211639914535221813/0/2
NC Cloud 1903(补丁编码: NCM_NCCLOUD1903_10_109902_20211219_GP_914646109):https://dsp.yonyou.com/patchcenter/patchdetail/10211639914646820818/0/2
NC Cloud 1909(补丁编码: NCM_NCCLOUD1909_10_109902_20211219_GP_914707007):https://dsp.yonyou.com/patchcenter/patchdetail/10211639914707708823/0/2
NC Cloud 2020.05(补丁编码: NCM_NCCLOUD2020.05_10_109902_20211219_GP_914754780):
https://dsp.yonyou.com/patchcenter/patchdetail/11211639914755479667/0/2
NC Cloud 2021.05(补丁编码: NCM_NCCLOUD2021.05_10_0013_20211219_GP_914817560):
https://dsp.yonyou.com/patchcenter/patchdetail/10211639914818326828/0/2
漏洞得分
更新时间
补丁下载:
https://www.iufida.com/126-136727-0.html
https://www.iufida.com/126-136729-0.html
本站不提供下载资料的技术支持。使用者必须具备技术能力并自行解决问题!否则请勿下载。