Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple directory traversal vulnerabilities in Sielco Sistemi Winlog Pro SCADA before 2.07.17 and Winlog Lite SCADA before 2.07.17 allow remote attackers to read arbitrary files via port-46824 TCP packets specifying a file-open operation with opcode 0x78 and a .. (dot dot) in a pathname, followed by a file-read operation with opcode (1) 0x96, (2) 0x97, or (3) 0x98.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sielco Sistemi Winlog Pro SCADA/Winlog Lite SCADA 多个目录遍历漏洞
Vulnerability Description
Winlog Pro是管理工业和民用工厂的SCADA/HMI软件包。 Sielco Sistemi Winlog Pro SCADA 2.07.17之前版本和Winlog Lite SCADA 2.07.17之前版本中存在多个目录遍历漏洞。远程攻击者可利用这些漏洞通过TCP 46824端口数据包以0x78操作码和路径名中的..(点点)指定打开文件操作,其次以(1)0x96(2)0x97或(3)0x98操作码指定读取文件操作,进而读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A