Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Configuration service port remains open 10 minutes after reboot even when already provisioned
Vulnerability Description
Unprotected Transport of Credentials vulnerability in SiteManager provisioning service allows local attacker to capture credentials if the service is used after provisioning. This issue affects: Secomea SiteManager All versions prior to 9.5 on Hardware.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
凭证传输未经安全保护
Vulnerability Title
Secomea SiteManager 安全漏洞
Vulnerability Description
Secomea SiteManager是丹麦 (Secomea)公司的一个应用软件。提供一个工业设备远程维护功能。 Secomea SiteManager 9.5之前版本存在安全漏洞,该漏洞源于SiteManager配置服务中存在未受保护的凭据传输漏洞,如果在设置后使用该服务,则本地攻击者可利用该漏洞捕获凭据。
CVSS Information
N/A
Vulnerability Type
N/A