漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc. The software uses encryption to store these configurations securely on the host machine. However, the keys used for this encryption were insecurely stored, which could be abused to possibly change or remove the server configuration.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
敏感数据的明文存储
Vulnerability Title
Eaton Foreseer EPMS 安全漏洞
Vulnerability Description
Eaton Foreseer EPMS是美国伊顿(Eaton)公司的一个高度可定制的基于 web 的软件平台。 Eaton Foreseer EPMS 7.8.600之前版本存在安全漏洞,该漏洞源于用于加密服务器配置的密钥不安全地存储在主机上,从而会被滥用来更改或删除服务器配置。
CVSS Information
N/A
Vulnerability Type
N/A