Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Affected devices do not properly validate the length of inputs when performing certain configuration changes in the web interface allowing an authenticated attacker to cause a denial of service condition. The device needs to be restarted for the web interface to become available again.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Siemens SCALANCE 多款产品安全漏洞
Vulnerability Description
Siemens SCALANCE是德国西门子(Siemens)公司的一系列以太网交换机。可连接到工业控制系统 (ICS) 设备,包括可编程逻辑控制器 (PLC) 和人机界面 (HMI) 系统。 Siemens SCALANCE 多款产品存在安全漏洞,该漏洞源于在 Web 界面中执行某些配置更改时,受影响的设备无法正确验证输入的长度,从而允许经过身份验证的攻击者造成拒绝服务情况。以下产品及版本受到影响:SCALANCE XB205-3 (SC, PN), SCALANCE XB205-3 (ST, E/IP
CVSS Information
N/A
Vulnerability Type
N/A