Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Pepper+Fuchs Comtrol IO-Link Master OS Command Injection
Vulnerability Description
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Pepperl Fuchs IO-link Master Series 操作系统命令注入漏洞
Vulnerability Description
Pepperl Fuchs IO-link Master Series是德国Pepperl Fuchs公司的一系列用于管理传感器与控制器之间通信的工业设备。该设备可用于以太网和 IO-Link 之间的网关功能,助于在管理级别与传感器/执行器级别之间进行可靠、高效的通信。 Pepperl+Fuchs IO-Link Master Series 1.36存在操作系统命令注入漏洞,该漏洞源于程序未过滤的用户输入附加到字符串,攻击者可利用该漏洞执行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A