Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Desigo CC (V4.x), Desigo CC (V3.x), Desigo CC Compact (V4.x), Desigo CC Compact (V3.x). Affected applications are delivered with a 3rd party component (BIRT) that contains a remote code execution vulnerability if the Advanced Reporting Engine is enabled. The vulnerability could allow a remote unauthenticated attacker to execute arbitrary commands on the server with SYSTEM privileges.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Siemens Desigo CC和Desigo CC Compact 代码注入漏洞
Vulnerability Description
Siemens Desigo CC和Siemens Desigo CC Compact都是德国西门子(Siemens)公司的产品。Siemens Desigo CC是一款开放式楼宇管理平台,用于产生舒适、安全和高效的设施。Siemens Desigo CC Compact是一个为中小型建筑提供量身定制的解决方案。 Siemens Desigo CC和Desigo CC Compact中存在代码注入漏洞。攻击者可利用该漏洞以SYSTEM权限执行任意命令。以下产品及版本受到影响:Siemens Desigo
CVSS Information
N/A
Vulnerability Type
N/A