Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WEIDMUELLER: WLAN devices affected by privilege escalation vulnerability
Vulnerability Description
In Weidmueller Industrial WLAN devices in multiple versions an exploitable privilege escalation vulnerability exists in the iw_console functionality. A specially crafted menu selection string can cause an escape from the restricted console, resulting in system access as the root user. An attacker can send commands while authenticated as a low privilege user to trigger this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
编程规范违背
Vulnerability Title
Weidmueller Industrial WLAN devices安全漏洞
Vulnerability Description
Weidmueller Industrial WLAN devices是德国Weidmueller公司的一个工控WIAN。 Weidmueller Industrial WLAN 存在安全漏洞,该漏洞源于特制的菜单选择字符串可能会导致从受限控制台逃逸,从而导致作为根用户访问系统,攻击者可利用该漏洞在身份验证为低权限用户时发送命令来触发此漏洞。
CVSS Information
N/A
Vulnerability Type
N/A