Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation ISaGRAF5 Runtime Cleartext Transmission of Sensitive Information
Vulnerability Description
ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication protocol provides various file system operations, as well as the uploading of applications. Data is transferred over this protocol unencrypted, which could allow a remote unauthenticated attacker to upload, read, and delete files.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Rockwell Automation ISaGRAF 安全漏洞
Vulnerability Description
Rockwell Automation ISaGRAF是美国罗克韦尔(Rockwell Automation)公司的一种用于创建集成自动化解决方案的自动化软件技术。它设计为可扩展和便携,适合开发小型控制器和大型分布式自动化系统。 Rockwell Automation ISaGRAF 存在安全漏洞,该漏洞允许远程未经身份验证的攻击者上传、读取和删除文件。
CVSS Information
N/A
Vulnerability Type
N/A