Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ISaGRAF Workbench Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-22
Vulnerability Description
Rockwell Automation ISaGRAF Workbench software versions 6.0 through 6.6.9 are affected by a Path Traversal vulnerability. Crafted malicious files can allow an attacker to traverse the file system when opened by ISaGRAF Workbench. If successfully exploited, an attacker could overwrite existing files and create additional files with the same permissions of the ISaGRAF Workbench software. User interaction is required for this exploit to be successful.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Rockwell Automation ISaGRAF Workbench 路径遍历漏洞
Vulnerability Description
Rockwell Automation ISaGRAF Workbench是美国Rockwell Automation公司的一个用于开发高度可移植应用程序的完整编程环境。 Rockwell Automation ISaGRAF Workbench 6.0至6.6.9版本存在路径遍历漏洞,该漏洞源于精心制作的恶意文件允许攻击者在ISaGRAF Workbench打开时遍历文件系统。如果成功利用该漏洞,攻击者可以覆盖现有文件并创建具有ISaGRAF Workbench软件相同权限的附加文件。要成功利用此漏洞需
CVSS Information
N/A
Vulnerability Type
N/A