Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PTC Kepware ThingWorx Kepware Server Allocation of Resources Without Limits or Throttling
Vulnerability Description
When performing an online tag generation to devices which communicate using the ControlLogix protocol, a machine-in-the-middle, or a device that is not configured correctly, could deliver a response leading to unrestricted or unregulated resource allocation. This could cause a denial-of-service condition and crash the Kepware application. By default, these functions are turned off, yet they remain accessible for users who recognize and require their advantages.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
PTC Kepware ThingWorx Kepware Server 安全漏洞
Vulnerability Description
PTC Kepware ThingWorx Kepware Server是美国PTC公司的一款服务器平台。可为消费应用程序提供工业自动化数据的单一来源。 PTC Kepware ThingWorx Kepware Server存在安全漏洞,该漏洞源于提供导致不受限制或不受监管的资源分配,从而导致拒绝服务条件并使Kepware应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A