漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product: EcoStruxure Control Expert (V15.0 SP1 and prior)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
Schneider Electric EcoStruxure Control Experta 缓冲区错误漏洞
Vulnerability Description
Schneider Electric EcoStruxure Control Expert(前称Unity Pro)是法国施耐德电气(Schneider Electric)公司的一套用于Schneider Electric逻辑控制器产品的编程软件。 Schneider Electric EcoStruxure Control Expert(V15.0 SP1 和更早版本)存在安全漏洞,当攻击者能够拦截和操纵特定的 Modbus 响应数据时,该漏洞可能会导致 Modicon 控制器和工程软件之间的通信中断。
CVSS Information
N/A
Vulnerability Type
N/A