漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Buffer Over-read vulnerability in Mitsubishi Electric MC Works64 versions 4.00A to 4.04E, Mitsubishi Electric GENESIS64 versions 10.97 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 and prior, Mitsubishi Electric ICONICS Suite versions 10.97 and prior, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 and prior, Mitsubishi Electric GENESIS32 versions 9.7 and prior, and Mitsubishi Electric Iconics Digital Solutions GENESIS32 versions 9.7 and prior allows an attacker to cause a DoS condition in the database server by getting a legitimate user to import a configuration file containing specially crafted stored procedures into GENESIS64, ICONICS Suite, MC Works64, or GENESIS32 and execute commands against the database from GENESIS64, ICONICS Suite, MC Works64, or GENESIS32.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:N/I:L/A:H
Vulnerability Type
缓冲区上溢读取
Vulnerability Title
Mitsubishi Electric MC Works64 缓冲区错误漏洞
Vulnerability Description
Mitsubishi Electric MC Works64是日本三菱电机(Mitsubishi Electric)公司的一套数据采集与监控系统(SCADA)。 Mitsubishi Electric MC Works64 存在安全漏洞,该漏洞源于SQL查询引擎内存分配代码中的编码错误使得在GENESIS64系统或MC Works64系统中执行一系列SQL命令成为可能,这可以 导致 SQL 查询引擎崩溃并导致 SQL Server 禁用。
CVSS Information
N/A
Vulnerability Type
N/A