漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An out-of-bounds write vulnerability exists in the URL_decode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to an out-of-bounds write. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
跨界内存写
Vulnerability Title
Sealevel Systems SeaConnect 370W 缓冲区错误漏洞
Vulnerability Description
Sealevel Systems SeaConnect 370W是美国Sealevel Systems公司的一款工业物联网(Iiot)边缘设备。用于远程监视和控制实际 I/O 进程的状态。 Sealevel Systems SeaConnect 370W 中存在缓冲区错误漏洞,该漏洞源于产品的 OTA update task 功能未对内存边界做有效限制。攻击者可通过特制的网络包导致越界写入并引起拒绝服务。以下产品及版本受到影响:Sealevel Systems SeaConnect 370W v1.3.3
CVSS Information
N/A
Vulnerability Type
N/A