Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A XML external entity (XXE) vulnerability exists in the import.cgi of the web interface component of the Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Schneider Electric Pelco Sarix Professional Web interface组件安全漏洞
Vulnerability Description
Schneider Electric Pelco Sarix Professional是法国施耐德电气(Schneider Electric)公司的一款视频监控设备。Web interface是其中的一个Web管理界面。 使用3.29.67之前版本固件的Schneider Electric Pelco Sarix Professional中的Web interface组件的import.cgi文件存在XNL外部实体注入漏洞。攻击者可利用该漏洞可能获取信息。
CVSS Information
N/A
Vulnerability Type
N/A