Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal and Rockwell Automation Third-party Vulnerability in DataMosaix™ Private Cloud
Vulnerability Description
A path traversal vulnerability exists in the Rockwell Automation DataEdge Platform DataMosaix Private Cloud. By specifying the character sequence in the body of the vulnerable endpoint, it is possible to overwrite files outside of the intended directory. A threat actor with admin privileges could leverage this vulnerability to overwrite reports including user projects.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
Rockwell Automation DataEdge Platform DataMosaix Private Cloud 安全漏洞
Vulnerability Description
Rockwell Automation DataEdge Platform DataMosaix Private Cloud是美国罗克韦尔(Rockwell Automation)公司的一种工业数据平台,旨在帮助企业实现智能制造、物联网(IoT)和工业数据集成。 Rockwell Automation DataEdge Platform DataMosaix Private Cloud存在安全漏洞。攻击者利用该漏洞可以覆盖目标目录之外的文件。
CVSS Information
N/A
Vulnerability Type
N/A