Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Portal installation process in GE Intelligent Platforms Proficy Real-Time Information Portal stores sensitive information under the web root with insufficient access control, which allows remote attackers to read configuration files, and discover data-source credentials, via a direct request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GE Proficy Real-Time Information Portal 多个信息泄露漏洞
Vulnerability Description
GE Proficy Real-Time Information Portal是实时生产制造智能应用。 GE Intelligent Platforms Proficy Real-Time Information Portal中的门户网站安装过程中存在漏洞,该漏洞源于程序以不充分的访问控制在web根目录下存储了敏感信息。通过发送直接请求,远程攻击者利用该漏洞读取配置文件,泄露数据源凭证。
CVSS Information
N/A
Vulnerability Type
N/A