漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Advantech ADAM-5630 Use of Persistent Cookies Containing Sensitive Information
Vulnerability Description
Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
通过持久性Cookie导致的信息暴露
Vulnerability Title
Advantech ADAM-5630 安全漏洞
Vulnerability Description
Advantech ADAM-5630是中国研华(Advantech)公司的一款边缘智能数据采集控制器。 Advantech ADAM-5630存在安全漏洞,该漏洞源于会话关闭后,经过身份验证的用户的 Cookie 仍将作为有效的 Cookie 保留。
CVSS Information
N/A
Vulnerability Type
N/A