Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Matrikon OPC Server Improper Access Control
Vulnerability Description
Matrikon, a subsidary of Honeywell Matrikon OPC Server (all versions) is vulnerable to a condition where a low privileged user allowed to connect to the OPC server to use the functions of the IPersisFile to execute operating system processes with system-level privileges.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:H/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Honeywell Matrikon OPC Server 访问控制错误漏洞
Vulnerability Description
Honeywell Matrikon OPC Server是美国Honeywell公司的一个功能强大的工具。可以安全地访问您的控制和自动化系统,并为其他系统开辟新的连接视野。 Honeywell Matrikon OPC Server 存在访问控制错误漏洞,该漏洞源于应用中IPersisFile缺少权限的限制。低权限用户利用该漏洞可以使用system执行操作系统进程级权限。
CVSS Information
N/A
Vulnerability Type
N/A