Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Simcenter Amesim (All versions < V2021.1). The affected application contains a SOAP endpoint that could allow an unauthenticated remote attacker to perform DLL injection and execute arbitrary code in the context of the affected application process.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Siemens Simcenter Amesim 代码注入漏洞
Vulnerability Description
Siemens Simcenter Amesim是德国西门子(Siemens)公司的一种用于建模和仿真多领域系统的工具,可以用于设计、测试和优化各种产品和系统,从汽车和飞机到液压系统和电子设备。 Siemens Simcenter Amesim 存在代码注入漏洞,该漏洞源于受影响的应用程序包含一个 SOAP 端点,该端点可能允许未经身份验证的远程攻击者执行 DLL 注入并在受影响的应用程序进程的上下文中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A