Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SINUMERIK Edge (All versions < V3.2). The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between the client and the intended server.
CVSS Information
N/A
Vulnerability Type
证书验证不恰当
Vulnerability Title
Siemens SINUMERIK 信任管理问题漏洞
Vulnerability Description
Siemens SINUMERIK是德国西门子(Siemens)公司的一套控制系统。适用于所有生产领域。 Siemens SINUMERIK Edge(所有版本 < V3.2)中存在信任管理问题漏洞,该漏洞源于启动 TLS 连接时,受影响的软件无法正确验证服务器证书。这可能允许攻击者通过干扰客户端和预期服务器之间的通信路径来欺骗受信任的实体。
CVSS Information
N/A
Vulnerability Type
N/A