Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Advantech ADAM-5630 Use of Persistent Cookies Containing Sensitive Information
Vulnerability Description
Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
通过持久性Cookie导致的信息暴露
Vulnerability Title
Advantech ADAM-5630 安全漏洞
Vulnerability Description
Advantech ADAM-5630是中国研华(Advantech)公司的一款边缘智能数据采集控制器。 Advantech ADAM-5630存在安全漏洞,该漏洞源于会话关闭后,经过身份验证的用户的 Cookie 仍将作为有效的 Cookie 保留。
CVSS Information
N/A
Vulnerability Type
N/A