Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Industrial Edge Management (All versions < V1.5.1). The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between the client and the intended server.
CVSS Information
N/A
Vulnerability Type
证书验证不恰当
Vulnerability Title
Siemens Industrial Edge Management 信任管理问题漏洞
Vulnerability Description
Siemens Industrial Edge Management是德国西门子(Siemens)公司的一个平台,用于在靠近车间的计算平台上托管来自不同供应商的应用程序。 Siemens Industrial Edge Management V1.5.1 版本之前存在安全漏洞,该漏洞源于启动 TLS 连接时,受影响的软件未正确验证服务器证书。这可能允许攻击者通过干扰客户端和目标服务器之间的通信路径来欺骗受信任的实体。
CVSS Information
N/A
Vulnerability Type
N/A