Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
FactoryTalk View ME Remote Code Execution Vulnerability via Project Save Path
Vulnerability Description
A remote code execution vulnerability exists in the affected product. The vulnerability allows users to save projects within the public directory allowing anyone with local access to modify and/or delete files. Additionally, a malicious user could potentially leverage this vulnerability to escalate their privileges by changing the macro to execute arbitrary code.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Rockwell Automation FactoryTalk View ME 安全漏洞
Vulnerability Description
Rockwell Automation FactoryTalk View ME是美国罗克韦尔(Rockwell Automation)公司的一款人机界面(HMI)软件,用于创建和部署在工厂设备和机器上运行的监控和控制界面。 Rockwell Automation FactoryTalk View ME v15之前版本存在安全漏洞,该漏洞源于存在远程代码执行漏洞,攻击者可能会利用此漏洞通过更改宏来执行任意代码,从而提升其权限。
CVSS Information
N/A
Vulnerability Type
N/A