Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local user to gain code execution as administrative application user.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权API的不正确使用
Vulnerability Title
Siemens Spectrum Power 安全漏洞
Vulnerability Description
Siemens Spectrum Power是德国西门子(Siemens)公司的一套能源管理系统。 Siemens Spectrum Power 4 V4.70 SP12 Update 2之前版本存在安全漏洞,该漏洞源于本地主机上暴露的调试接口,可能导致本地权限提升。
CVSS Information
N/A
Vulnerability Type
N/A