Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of the access controls for the installed product files. The installation procedure leaves critical files open to manipulation by any authenticated user. An attacker can leverage this vulnerability to escalate privileges to SYSTEM. Was ZDI-CAN-5097.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
ABB MicroSCADA 安全漏洞
Vulnerability Description
ABB MicroSCADA是瑞士ABB公司的一套专为电力输配电系统而开发的变电站监控软件。该软件包含人机界面 (MMI) 和灵活的应用工程工具,且提供监视、事件告警、趋势图统计等功能。 使用FP 1-2-3的ABB MicroSCADA 9.3版本中对安装产品文件的访问控制的配置存在安全漏洞。攻击者可利用该漏洞提升到SYSTEM权限。
CVSS Information
N/A
Vulnerability Type
N/A