漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Rockwell Automation FactoryTalk Linx Vulnerable to Denial-of-Service and Information Disclosure
Vulnerability Description
FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is large enough, it causes communications over the common industrial protocol to become unresponsive to any type of packet, resulting in a denial-of-service to FactoryTalk Linx over the common industrial protocol.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Rockwell Automation PanelView Plus 缓冲区错误漏洞
Vulnerability Description
Rockwell Automation PanelView Plus是美国罗克韦尔(Rockwell Automation)公司的一款人机界面(HMI)产品系列。这些 HMI 设备旨在与工业自动化系统集成,为操作员提供控制和监视生产过程的直观界面。PanelView Plus 具有广泛的应用,尤其是在制造业、工业控制和过程控制中。 Rockwell Automation PanelView Plus存在安全漏洞,该漏洞源于FactoryTalk Linx服务存在缓冲区溢出漏洞,允许攻击者通过特制的恶意数据
CVSS Information
N/A
Vulnerability Type
N/A