Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SCALANCE M875 (All versions). An authenticated remote attacker with access to the web interface (443/tcp), could execute arbitrary operating system commands. Successful exploitation requires that the attacker has network access to the web interface. The attacker must be authenticated as administrative user to exploit the security vulnerability. The vulnerability could allow an attacker to execute arbitrary code on the device. At the time of advisory publication no public exploitation of this security vulnerability was known.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Siemens SCALANCE M875 操作系统命令注入漏洞
Vulnerability Description
Siemens SCALANCE M875是德国西门子(Siemens)公司的一款工业级移动无线路由器产品。 Siemens SCALANCE M875(所有版本)中的Web界面存在操作系统命令注入漏洞。远程攻击者可借助Web页面的访问权限利用该漏洞执行任意的操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A