Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AzeoTech DAQFactory
Vulnerability Description
An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle (MiTM) attack. This could allow an attacker to obtain credentials and take over the user’s cloud account.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
Vulnerability Type
对假设不可变数据的修改(MAID)
Vulnerability Title
AzeoTech DAQFactory 输入验证错误漏洞
Vulnerability Description
AzeoTech DAQFactory是提供您轻松创建 HMI/SCADA 应用程序所需的工具。 AzeoTech DAQFactory 中存在输入验证错误漏洞,该漏洞源于产品未对文件内容进行有效检查,攻击者可通过制造特殊文件并再打开后连接云端引起中间人攻击并泄露账户证书以及账号。
CVSS Information
N/A
Vulnerability Type
N/A