Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SICAM PAS/PQS (All versions < V7.0). Affected software does not properly secure a folder containing library files. This could allow an attacker to place a custom malicious DLL in this folder which is then run with SYSTEM rights when a service is started that requires this DLL. At the time of assigning the CVE, the affected firmware version of the component has already been superseded by succeeding mainline versions.
CVSS Information
N/A
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
Siemens SICAM PAS/PQS 代码问题漏洞
Vulnerability Description
Siemens SICAM PAS/PQS是德国西门子(Siemens)公司的一款带有用于能源自动化和电能质量操作系统的软件。 Siemens SICAM PAS/PQS V7.0之前版本存在安全漏洞,该漏洞源于不能正确保护包含文件夹。攻击者利用该漏洞在文件夹中放置一个自定义恶意DLL,当启动需要该DLL的服务时,该DLL将以系统权限运行。
CVSS Information
N/A
Vulnerability Type
N/A