Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation PowerMonitor 1000 Cross-Site Scripting Vulnerability
Vulnerability Description
The Rockwell Automation PowerMonitor 1000 contains stored cross-site scripting vulnerabilities within the web page of the product. The vulnerable pages do not require privileges to access and can be injected with code by an attacker which could be used to leverage an attack on an authenticated user resulting in remote code execution and potentially the complete loss of confidentiality, integrity, and availability of the product.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Rockwell Automation Allen-Bradley PowerMonitor 1000 跨站脚本漏洞
Vulnerability Description
Rockwell Automation Allen-Bradley PowerMonitor 1000是美国罗克韦尔(Rockwell Automation)公司的一款电源监控设备。 Rockwell Automation Allen-Bradley PowerMonitor 1000 存在跨站脚本漏洞,该漏洞源于页面不需要访问权限,攻击者可以注入代码对经过身份验证的用户进行攻击,从而导致远程代码执行,并可能完全丧失产品的机密性、完整性和可用性。
CVSS Information
N/A
Vulnerability Type
N/A