漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Codesys: Vulnerability in CODESYS Development System and CODESYS Scripting
Vulnerability Description
In CODESYS Development System 3.5.9.0 to 3.5.17.0 and CODESYS Scripting 4.0.0.0 to 4.1.0.0 unsafe directory permissions would allow an attacker with local access to the workstation to place potentially harmful and disguised scripts that could be executed by legitimate users.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
将资源暴露给错误范围
Vulnerability Title
3s-smart Software Solutions CODESYS Development System 安全漏洞
Vulnerability Description
3s-smart Software Solutions CODESYS Development System是德国德国3S智能软件系统方案有限公司(3s-smart Software Solutions)公司的一套用于工业控制器和自动化技术领域的编程工具。 CODESYS Development System存在安全漏洞,该漏洞源于存在不安全的目录权限配置。攻击者可利用该漏洞将危险脚本放置到本地并由合法用户执行。受影响的产品和版本:CODESYS Development System 3.5.9.0至3.
CVSS Information
N/A
Vulnerability Type
N/A