Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.20), CP-8050 MASTER MODULE (All versions < CPCI85 V05.20). The network configuration service of affected devices contains a flaw in the conversion of ipv4 addresses that could lead to an uninitialized variable being used in succeeding validation steps. By uploading specially crafted network configuration, an authenticated remote attacker could be able to inject commands that are executed on the device with root privileges during device startup.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对未经初始化资源的使用
Vulnerability Title
Siemens CP-8031 安全漏洞
Vulnerability Description
Siemens CP-8031是德国西门子(Siemens)公司的一个工业设备模块。 Siemens CP-8031 MASTER MODULE和CP-8050 MASTER MODULE 存在安全漏洞,该漏洞源于受影响设备的网络配置服务在 ipv4 地址转换中存在缺陷,可能导致在后续验证步骤中使用未初始化的变量。
CVSS Information
N/A
Vulnerability Type
N/A