Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. A function reads a packet to indicate the next packet length. The next packet length is not verified, allowing a buffer overwrite that could lead to an arbitrary remote code execution.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
GE CIMPLICITY 缓冲区错误漏洞
Vulnerability Description
GE CIMPLICITY是美国通用电气(GE)公司的一款基于客户端/服务器的HMI/SCADA解决方案。该解决方案能够在企业各个层级之间采集并共享实时和历史数据,实现过程、设备、资源监控的操作可视化。 GE CIMPLICITY 9.0及之前的版本中存在基于栈的缓冲区溢出漏洞。远程攻击者可利用该漏洞执行任意代码(缓冲区越边界写入)。
CVSS Information
N/A
Vulnerability Type
N/A