漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
CWE-532: Insertion of Sensitive Information into Log Files vulnerability exists that could cause the disclosure of FTP server credentials when the FTP server is deployed, and the device is placed in debug mode by an administrative user and the debug files are exported from the device.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Schneider Electric EcoStruxure Panel Server 日志信息泄露漏洞
Vulnerability Description
Schneider Electric EcoStruxure Panel Server是法国施耐德电气(Schneider Electric)公司的一款用于数据采集及上传的物联网网关。 Schneider Electric EcoStruxure Panel Server v2.0及之前版本存在日志信息泄露漏洞,该漏洞源于将敏感信息插入日志文件,可能导致FTP服务器凭据泄露。
CVSS Information
N/A
Vulnerability Type
N/A