Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Distributed Data Systems WebHMI OS Command Injection
Vulnerability Description
A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 may send OS commands to execute on the host server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Distributed Data Systems WebHmi 操作系统命令注入漏洞
Vulnerability Description
Distributed Data Systems WebHmi是乌克兰Distributed Data Systems公司的一个带有内置网络服务器的 Scada 系统。用于通过计算机和移动设备监视和控制本地网络上以及通过 Internet 的任何自动化系统。 Distributed Data Systems WebHmi存在操作系统命令注入漏洞,该漏洞源于在WebHMI中具有管理权限的用户可以发送操作系统命令以在主机服务器上执行。
CVSS Information
N/A
Vulnerability Type
N/A