Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Open Automation Software OAS Platform 安全漏洞
Vulnerability Description
Open Automation Software OAS Platform是美国Open Automation Software公司的一个工业物联网(IoT)套件。旨在帮助企业将数据源连接到 OAS 平台。 Open Automation Software OAS Platform V16.00.0112 版本存在安全漏洞,该漏洞源于 OAS 引擎配置通信功能的敏感信息的清晰文本传输问题。攻击者利用该漏洞可通过有针对性的网络嗅探攻击获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A