漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Elevation of Privilege
Vulnerability Description
AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the command queue can use it to launch an attack by running any executable on the AdvaBuild node. The executables that can be run are not limited to AdvaBuild specific executables. Improper Privilege Management vulnerability in ABB Advant MOD 300 AdvaBuild.This issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权管理不恰当
Vulnerability Title
ABB Advant MOD 300 AdvaBuild 安全漏洞
Vulnerability Description
ABB Advant MOD 300 AdvaBuild是瑞士ABB公司的一个工业控制系统。 ABB Advant MOD 300 AdvaBuild 3.0版本至3.7 SP2版本存在安全漏洞,该漏洞源于使用命令队列来启动某些操作,获得访问权限的攻击者可以在AdvaBuild节点上运行任何可执行文件来发起攻击。
CVSS Information
N/A
Vulnerability Type
N/A