Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SEL Compass version 3.0.5.1 and prior allows all users full access to the SEL Compass directory, which may allow modification or overwriting of files within the Compass installation folder, resulting in escalation of privilege and/or malicious code execution.
CVSS Information
N/A
Vulnerability Type
缺省权限不正确
Vulnerability Title
SEL Compass 安全漏洞
Vulnerability Description
SEL Compass是美国Schweitzer Engineering Laboratories(SEL)公司的一款用于管理和更新SEL产品的应用程序。 SEL Compass 3.0.5.1及之前版本中存在安全漏洞,该漏洞源于程序设置了不正确的权限,导致所有用户都可以获取SEL Compass目录的全部访问权限。攻击者可利用该漏洞修改或覆盖Compass安装文件夹内的文件,从而提升权限或执行恶意代码。
CVSS Information
N/A
Vulnerability Type
N/A