Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ICSA-22-104-03 Red Lion DA50N
Vulnerability Description
Authorized users may install a maliciously modified package file when updating the device via the web user interface. The user may inadvertently use a package file obtained from an unauthorized source or a file that was compromised between download and deployment.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Red Lion DA50N 数据伪造问题漏洞
Vulnerability Description
Red Lion DA50N是美国Red Lion公司的一系列安全边缘网络网关。 Red Lion DA50N存在数据伪造问题漏洞,该漏洞源于授权用户在通过Web用户界面更新设备时可能会安装恶意修改的软件包文件。用户可能会无意中使用从未经授权的来源获得的包文件或在下载和部署之间受到损害的文件。
CVSS Information
N/A
Vulnerability Type
N/A