Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6 (All versions < V6.0 SP9 Upd4), TeleControl Server Basic V3 (All versions < V3.1.2). The affected components allow to rename license files with user chosen input without authentication. This could allow an unauthenticated remote attacker to rename and move files as SYSTEM user.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
Siemens Automation License Manager 安全漏洞
Vulnerability Description
Siemens Automation License Manager是德国西门子(Siemens)公司的一款用于Siemens产品的许可证管理器。 Siemens Automation License Manager 存在安全漏洞,该漏洞源于允许使用用户选择的输入重命名许可证文件而无需身份验证,可能允许未经身份验证的远程攻击者以SYSTEM用户身份重命名和移动文件。
CVSS Information
N/A
Vulnerability Type
N/A