Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
GE Reason RT43X Clocks Code Injection
Vulnerability Description
A code injection vulnerability exists in one of the webpages in GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06 that could allow an authenticated remote attacker to execute arbitrary code on the system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
GE Reason RT430 Clock 代码注入漏洞
Vulnerability Description
GE Reason RT430 Clock是美国通用电气(GE)公司的一个参考GPS和GLONASS卫星的精密时钟设备。 多款 GE 产品存在安全漏洞,经过身份验证的远程攻击者在系统上执行任意代码,或拦截并解密加密的通信流。以下产品及型号受到影响:GE RT430(08A06), GE RT431(08A06),GE RT434 (08A06)。
CVSS Information
N/A
Vulnerability Type
N/A