Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rockwell Automation Pavilion8® Unencrypted Data Vulnerability via HTTP protocol
Vulnerability Description
CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data being sent between the Console and the Dashboard without encryption, which can be seen in the logs of proxy servers, potentially impacting the data's confidentiality.
CVSS Information
N/A
Vulnerability Type
敏感数据加密缺失
Vulnerability Title
Rockwell Automation Pavilion8 安全漏洞
Vulnerability Description
Rockwell Automation Pavilion8是美国罗克韦尔(Rockwell Automation)公司的一个模型预测控制台。 Rockwell Automation Pavilion8 5.20版本存在安全漏洞,该漏洞源于敏感信息缺乏加密,导致在代理服务器的日志中可看到在控制台和仪表板之间发送的数据,从而会影响数据的机密性。
CVSS Information
N/A
Vulnerability Type
N/A