Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sprecher SPRECON-E firmware prior to 8.64b might allow local attackers with access to engineering data to insert arbitrary code. This firmware lacks the validation of the input values on the device side, which is provided by the engineering software during parameterization. Attackers with access to local configuration files can therefore insert malicious commands that are executed after compiling them to valid parameter files (“PDLs”), transferring them to the device, and restarting the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SprecherAutomation Sprecher SPRECON-E 命令注入漏洞
Vulnerability Description
SprecherAutomation Sprecher SPRECON-E是奥地利SprecherAutomation公司的一套提供包括运行咨询、规划、开发,工程和设备现场安装、调试和操作员培训的服务包应用程序。 Sprecher SPRECON-E firmware 8.64b之前版本存在安全漏洞,该漏洞源于缺少设备端输入值的验证。攻击者可利用该漏洞插入任意代码。
CVSS Information
N/A
Vulnerability Type
N/A