';
}
else{
echo 'Hillstone Networks ';
} elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") {
echo 'huaantech ';
} elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") {
echo 'dcnetworks ';
} elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") {
if (false===strpos($_SERVER[REQUEST_URI],"/en/"))
echo 'w-ibeda ';
} elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") {
echo 'hp-telecom ';
} elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") {
echo 'Maipu ';
} elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") {
echo 'Ncurity ';
} elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") {
echo 'Socusnetwork ';
} else{
echo 'Hillstone Networks ';
}
?>
vul_frame:spring_web_flow_rce_vul(Rule ID:1070110066)
Release Date :2025/9/15
Rule Name :CVE-2017-4971: Spring Web Flow Remote Code Execution Vulnerability
Severity :mid
CVE ID :CVE-2017-4971
Spring is a lightweight Java development framework. There are security vulnerabilities in Spring Security OAuth versions 2.0.0 to 2.0.9 and 1.0.0 to 1.0.5. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021.
Update vendor patches.