Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and earlier: 9328-CCWDEVENE, 9328-CCWDEVZHE, 9328-CCWDEVFRE, 9328-CCWDEVITE, 9328-CCWDEVDEE, 9328-CCWDEVESE, and 9328-CCWDEVPTE; and Connected Components Workbench - Free Standard Edition (All Supported Languages), v9.01.00 and earlier. Certain DLLs included with versions of CCW software can be potentially hijacked to allow an attacker to gain rights to a victim's affected personal computer. Such access rights can be at the same or potentially higher level of privileges as the compromised user account, including and up to computer administrator privileges.
CVSS Information
N/A
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
Rockwell Automation Connected Components Workbench 安全漏洞
Vulnerability Description
Rockwell Automation Connected Components Workbench(CCW)是美国罗克韦尔(Rockwell Automation)公司的一套连接组件工作台软件。该软件可用于控制器编程和设备配置,并集成有HMI编辑器,进一步简化单机设备编程。 Rockwell Automation CCW中存在DLL劫持漏洞。攻击者可利用该漏洞获取受影响的个人电脑的用户或更高的管理员权限。以下版本受到影响:Rockwell Automation 9328-CCWDEVENE 9.01.0
CVSS Information
N/A
Vulnerability Type
N/A