Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A CWE-787: Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247, that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
CVSS Information
N/A
Vulnerability Type
跨界内存写
Vulnerability Title
Schneider Electric Interactive Graphical SCADA System 缓冲区错误漏洞
Vulnerability Description
Schneider Electric Interactive Graphical SCADA System(IGSS)是法国施耐德电气(Schneider Electric)公司的一套用于监控和控制工业过程的SCADA(数据采集与监控系统)系统。 Interactive Graphical SCADA System 存在缓冲区错误漏洞,该漏洞源于当将恶意CGF(配置组文件)导入到IGSS定义时,对内存缓冲区漏洞范围内的操作进行不当限制可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A