漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Unauthenticated users can access sensitive web URLs through GET request, which should be restricted to maintenance users only. A malicious attacker could use this sensitive information’s to launch further attacks on the system.
CVSS Information
N/A
Vulnerability Type
授权机制缺失
Vulnerability Title
SICK FieldEcho 资源管理错误漏洞
Vulnerability Description
SICK FieldEcho是德国西克(SICK)公司的一款工控产品。 SICK FieldEcho存在安全漏洞,该漏洞源于未经身份验证的用户可以通过GET请求访问敏感的web URL。攻击者利用敏感信息对系统发起进一步攻击。
CVSS Information
N/A
Vulnerability Type
N/A