漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
File parsing Type Confusion Remote code execution vulerability
Vulnerability Description
Eaton's easySoft software v7.xx prior to v7.22 are susceptible to file parsing type confusion remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user upload a malformed .E70 file in the application. The vulnerability arises due to improper validation of user data supplied through E70 file which is causing Type Confusion.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L
Vulnerability Type
使用不兼容类型访问资源(类型混淆)
Vulnerability Title
Eaton Easysoft 安全漏洞
Vulnerability Description
Eaton Easysoft是美国伊顿(Eaton)公司的一款应用于工业领域的编程应用。该软件用于用于对Easy控制器和显示器进行编程,可对电路图按照格式进行编辑和展示。 Eaton easySoft software v7.20 存在安全漏洞,攻击者可利用该漏洞执行恶意代码或通过欺骗用户在应用程序中上传格式不正确的.e70文件使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A