Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An attacker could potentially exploit this vulnerability, leading to files being read from the Honeywell Experion ControlEdge VirtualUOC and ControlEdge UOC. This exploit could be used to read files from the controller that may expose limited information from the device. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
绝对路径遍历
Vulnerability Title
Honeywell Experion ControlEdge VirtualUOC和ControlEdge UOC 安全漏洞
Vulnerability Description
Honeywell ControlEdge VirtualUOC和Honeywell ControlEdge UOC都是美国霍尼韦尔(Honeywell)公司的产品。Honeywell ControlEdge VirtualUOC是一种虚拟单元操作控制器。Honeywell ControlEdge UOC是一种单元操作控制器。 Honeywell ControlEdge Virtual UOC和ControlEdge UOC存在安全漏洞,该漏洞源于可以从控制器读取文件,从而暴露设备的有限信息。
CVSS Information
N/A
Vulnerability Type
N/A