Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A misconfiguration exists in the MQTTS functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. This misconfiguration significantly simplifies a man-in-the-middle attack, which directly leads to control of device functionality.
CVSS Information
N/A
Vulnerability Type
证书验证不恰当
Vulnerability Title
Sealevel Systems SeaConnect 370W 信任管理问题漏洞
Vulnerability Description
Sealevel Systems SeaConnect 370W是美国Sealevel Systems公司的一款工业物联网(Iiot)边缘设备。用于远程监视和控制实际 I/O 进程的状态。 Sealevel Systems SeaConnect 370W 中存在信任管理问题漏洞,该漏洞源于产品的MQTTS功能存在配置错误。攻击者可通过该漏洞导致中间人攻击并引起对设备的控制。以下产品及版本受到影响:Sealevel Systems SeaConnect 370W v1.3.34。
CVSS Information
N/A
Vulnerability Type
N/A