漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
An attacker who successfully exploited these vulnerabilities could cause enable command execution. A vulnerability exists in the AC500 V3 version mentioned. After successfully exploiting CVE-2024-12429 (directory traversal), a successfully authenticated attacker can inject arbitrary commands into a specifically crafted file, which then will be executed by root user. All AC500 V3 products (PM5xxx) with firmware version earlier than 3.8.0 are affected by this vulnerability.
漏洞信息
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞
不充分权限或特权的处理不恰当
漏洞
ABB AC500 安全漏洞
漏洞信息
ABB AC500是瑞士ABB公司的一款可编程逻辑控制器 PLC。 ABB AC500 V3 3.8.0之前版本存在安全漏洞,该漏洞源于存在目录遍历漏洞,导致通过身份验证的攻击者可将任意命令注入特制文件,然后由root用户执行。
漏洞信息
N/A
漏洞
N/A