Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Uncontrolled Resource Consumption vulnerability in MESbook
Vulnerability Description
Uncontrolled Resource Consumption vulnerability in MESbook 20221021.03 version. An unauthenticated remote attacker can use the "message" parameter to inject a payload with dangerous JavaScript code, causing the application to loop requests on itself, which could lead to resource consumption and disable the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
MESbook 资源管理错误漏洞
Vulnerability Description
MESbook是MESbook公司的一个基于网络的系统。连接到工厂机器并将数据转换为信息以进行实时管理。 MESbook 20221021.03版本存在资源管理错误漏洞,该漏洞源于攻击者可以使用message参数向负载中注入危险的JavaScript代码,导致资源消耗并禁用应用程序。
CVSS Information
N/A
Vulnerability Type
N/A