Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 does not require authentication, which allows remote attackers to execute arbitrary code via vectors related to creation of a file, loading a DLL, and process control.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
InduSoft Web Studio ‘CEServer.exe’ 组件远程代码执行漏洞
Vulnerability Description
InduSoft Web Studio是美国InduSoft公司的一套图控软件。该软件包含了人机界面(HMI)、数据采集系统(SCADA)和嵌入式控制所需的各种功能模组等。 InduSoft Web Studio的CEServer组件在实现上存在远程代码执行漏洞。攻击者可利用该漏洞在受影响的应用程序上下文中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A