Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2023-22806
Vulnerability Description
LS ELECTRIC XBC-DN32U with operating system version 01.80 transmits sensitive information in cleartext when communicating over its XGT protocol. This could allow an attacker to gain sensitive information such as user credentials.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
LS ELECTRIC XBC-DN32U 访问控制错误漏洞
Vulnerability Description
LS ELECTRIC XBC-DN32U是韩国LS ELECTRIC公司的一款 PLC 可编程逻辑控制器。 LS ELECTRIC XBC-DN32U 01.80版本存在访问控制错误漏洞,该漏洞源于设备通过 XGT 协议进行通信时以明文形式传输敏感信息,攻击者利用该漏洞可以获取敏感信息,例如用户凭据。
CVSS Information
N/A
Vulnerability Type
N/A