漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
External Control of File Name or Path (CWE-73) in the Controller 6000 and Controller 7000 allows an attacker with local access to the Controller to perform arbitrary code execution. This issue affects: 9.10 prior to vCR9.10.240520a (distributed in 9.10.1268(MR1)), 9.00 prior to vCR9.00.240521a (distributed in 9.00.1990(MR3)), 8.90 prior to vCR8.90.240520a (distributed in 8.90.1947 (MR4)), 8.80 prior to vCR8.80.240520a (distributed in 8.80.1726 (MR5)), 8.70 prior to vCR8.70.240520a (distributed in 8.70.2824 (MR7)), all versions of 8.60 and prior.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
Gallagher Controller 6000和Gallagher Controller 7000 安全漏洞
Vulnerability Description
Gallagher Controller 6000和Gallagher Controller 7000都是新西兰Gallagher公司的产品。Gallagher Controller 6000是一个 Gallagher 命令中心服务器和分布式现场硬件之间的接口。Gallagher Controller 7000是一款功能强大的网络连接控制器。 Gallagher Controller 6000和Gallagher Controller 7000存在安全漏洞,该漏洞源于文件名或路径外部控制允许具有控制器本地
CVSS Information
N/A
Vulnerability Type
N/A