漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Rockwell Automation Privilege Escalation Vulnerability in Pavilion8®
Vulnerability Description
A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access functions which should only be available to users with administrative level privileges. If exploited, an attacker could read sensitive data, and create users. For example, a malicious user with basic privileges could perform critical functions such as creating a user with elevated privileges and reading sensitive information in the “views” section.
CVSS Information
N/A
Vulnerability Type
关键资源的不正确权限授予
Vulnerability Title
Rockwell Automation Pavilion8 安全漏洞
Vulnerability Description
Rockwell Automation Pavilion8是美国罗克韦尔(Rockwell Automation)公司的一个模型预测控制台。 Rockwell Automation Pavilion8 存在安全漏洞,该漏洞源于存在权限提升漏洞,导致攻击者可读取敏感数据并创建用户。受影响版本如下:5.15.00版本、5.15.01版本、5.16.00版本、5.17.00版本、5.17.01版本和5.20.00版本。
CVSS Information
N/A
Vulnerability Type
N/A