Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation MicroLogix 1100 & 1400 Vulnerable to Cross-Site Scripting Attack
Vulnerability Description
Rockwell Automation was made aware of a vulnerability by a security researcher from Georgia Institute of Technology that the MicroLogix 1100 and 1400 controllers contain a vulnerability that may give an attacker the ability to accomplish remote code execution. The vulnerability is an unauthenticated stored cross-site scripting vulnerability in the embedded webserver. The payload is transferred to the controller over SNMP and is rendered on the homepage of the embedded website.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Rockwell Automation MicroLogix 1100 和 MicroLogix 1400 跨站脚本漏洞
Vulnerability Description
Rockwell Automation MicroLogix 1400和Rockwell Automation MicroLogix 1100都是美国罗克韦尔(Rockwell Automation)公司的产品。Rockwell Automation MicroLogix 1400是一款可编程逻辑控制器。Rockwell Automation MicroLogix 1100是一种可编程逻辑控制器系统。 MicroLogix 1100 和 1400 controllers存在安全漏洞,攻击者利用该漏洞可以远
CVSS Information
N/A
Vulnerability Type
N/A