Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Remote code execution in Valmet DNA before Collection 2021
Vulnerability Description
A remote code execution vulnerability affecting a Valmet DNA service listening on TCP port 1517, allows an attacker to execute commands with SYSTEM privileges This issue affects: Valmet DNA versions from Collection 2012 until Collection 2021.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用基本弱点进行的认证绕过
Vulnerability Title
Valmet DNA 安全特征问题漏洞
Vulnerability Description
Valmet DNA是芬兰维美德(Valmet)公司的一个自动化和信息系统的平台.在这个单一的平台中,涵盖了过程控制, 机器控制, 质量控制,传动控制及设备运行状况监测系统。 Valmet DNA 中存在安全特征问题漏洞,该漏洞源于产品未对用户身份做有效验证。攻击者可通过该漏洞以 SYSTEM权限执行命令。以下产品及版本受到影响:Valmet DNA 2012 至 2021 版本。
CVSS Information
N/A
Vulnerability Type
N/A