Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the targeted user has an active session and is induced into clicking on a malicious link or into visiting a malicious website, aka CSRF.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Siemens RUGGEDCOM ROX I 跨站请求伪造漏洞
Vulnerability Description
Siemens RUGGEDCOM ROX I是德国西门子(Siemens)公司的一套基于ROX用于设备连接的VPN端点和防火墙设备。 Siemens RUGGEDCOM ROX I中TCP 10000端口上的integrated web server存在跨站请求伪造漏洞。远程攻击者可通过诱使用户点击恶意的链接或访问Web站点利用该漏洞以用户身份执行操作。
CVSS Information
N/A
Vulnerability Type
N/A