Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation FactoryTalk AssetCentre SQL Injection
Vulnerability Description
The ArchiveService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier exposes functions lacking proper authentication. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary SQL statements.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Rockwell Automation FactoryTalk AssetCentre SQL注入漏洞
Vulnerability Description
Rockwell Automation FactoryTalk AssetCentre是美国罗克韦尔(Rockwell Automation)公司的一个应用系统。提供集中式工具,用于保护,管理,版本控制,跟踪和报告整个工厂中与自动化相关的资产信息 Rockwell Automation FactoryTalk AssetCentre 中的 ArchiveService.rem service 存在SQL注入漏洞,该漏洞源于缺乏适当身份验证的功能。远程攻击者可利用该漏洞执行任意SQL语句。
CVSS Information
N/A
Vulnerability Type
N/A