Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q3). The affected product assigns improper access rights to the update script. This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
关键资源的不正确权限授予
Vulnerability Title
Siemens Spectrum Power 安全漏洞
Vulnerability Description
Siemens Spectrum Power是德国西门子(Siemens)公司的一套能源管理系统。 Siemens Spectrum Power 7 V23Q3之前版本存在安全漏洞,该漏洞源于存在访问权限配置不当问题。攻击者可利用该漏洞注入任意代码并提升权限。
CVSS Information
N/A
Vulnerability Type
N/A