Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SICAM T (All versions < V3.0). Affected devices do not properly validate parameters of certain GET and POST requests. This could allow an unauthenticated attacker to set the device to a denial of service state or to control the program counter and, thus, execute arbitrary code on the device.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
参数分隔符转义处理不恰当
Vulnerability Title
Siemens SICAM 安全漏洞
Vulnerability Description
Siemens SICAM是德国西门子(Siemens)公司的一个综合变电站自动化系统。 Siemens SICAM P850和SICAM P855 存在安全漏洞,该漏洞源于受影响的设备无法正确验证某些GET和POST请求的参数。未经身份验证的攻击者可利用该漏洞导致拒绝服务或控制程序计数器并在设备上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A