Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
FactoryTalk® View Site Edition Remote Code Execution Vulnerability via Lack of Input Validation
Vulnerability Description
CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. The vulnerability occurs when chained with Path Traversal, Command Injection, and XSS Vulnerabilities and allows for full unauthenticated remote code execution. The link in the mitigations section below contains patches to fix this issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
Rockwell Automation FactoryTalk View Site Edition 安全漏洞
Vulnerability Description
Rockwell Automation FactoryTalk View Site Edition是美国罗克韦尔(Rockwell Automation)公司的一个集成软件包。用于开发和运行。 Rockwell Automation FactoryTalk View Site Edition存在安全漏洞,该漏洞源于缺乏输入验证,导致远程代码执行漏洞。
CVSS Information
N/A
Vulnerability Type
N/A