Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SICAM GridEdge (Classic) (All versions < V2.6.6). The affected software does not apply cross-origin resource sharing (CORS) restrictions for critical operations. In case an attacker tricks a legitimate user into accessing a special resource a malicious request could be executed.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
源验证错误
Vulnerability Title
Siemens SICAM GridEdge Essential 访问控制错误漏洞
Vulnerability Description
Siemens SICAM GridEdge Essential是德国西门子(Siemens)公司的一个数字产业和智能基础设施的产品目录和在线订购系统。 Siemens SICAM GridEdge Essential ARM 2.6.6 之前版本,SICAM GridEdge Essential Intel 2.6.6之前版本,SICAM GridEdge Essential with GDS ARM 2.6.6之前版本,SICAM GridEdge Essential with GDS Intel 2
CVSS Information
N/A
Vulnerability Type
N/A