Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Vulnerability Type
访问控制不恰当
Vulnerability Title
Siemens Comos 安全漏洞
Vulnerability Description
Siemens Comos是德国西门子(Siemens)公司的一个工厂工程软件解决方案。用于过程工业。 Siemens Comos 存在安全漏洞,该漏洞源于受影响的应用程序在建立 SQLServer 连接时缺乏适当的访问控制。
CVSS Information
N/A
Vulnerability Type
N/A