Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PB610 HMISimulator provides interface with access to arbitrary files
Vulnerability Description
The HMISimulator component of ABB PB610 Panel Builder 600 uses the readFile/writeFile interface to manipulate the work file. Path configuration in PB610 HMISimulator versions 2.8.0.424 and earlier potentially allows access to files outside of the working directory, thus potentially supporting unauthorized file access.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
对候选路径的不恰当保护
Vulnerability Title
ABB PB610 Panel Builder 600 PB610 HMISimulator 安全漏洞
Vulnerability Description
ABB PB610 Panel Builder 600是瑞士ABB公司的一款为CP600控制面板平台设计图形用户界面的软件。PB610 HMISimulator是其中的一个PB610仿真器组件。 ABB PB610 Panel Builder 600中的PB610 HMISimulator 2.8.0.424及之前版本的路径配置存在安全漏洞。攻击者可利用该漏洞访问工作目录之外的文件。
CVSS Information
N/A
Vulnerability Type
N/A