Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SINAMICS G220 V6.4 (All versions < V6.4 HF2), SINAMICS S200 V6.4 (All versions < V6.4 HF7), SINAMICS S210 V6.4 (All versions < V6.4 HF2). The affected devices allow a factory reset to be executed without the required privileges due to improper privilege management as well as manipulation of configuration data because of leaked privileges of previous sessions. This could allow an unauthorized attacker to escalate their privileges.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:L
Vulnerability Type
特权管理不恰当
Vulnerability Title
Siemens多款产品 安全漏洞
Vulnerability Description
Siemens SINAMICS S200等都是德国西门子(Siemens)公司的产品。Siemens SINAMICS S200是一款单轴交流伺服驱动系统。Siemens SINAMICS G220是一款可变频驱动器。Siemens SINAMICS S210是一款可变频驱动器。 Siemens多款产品存在安全漏洞,该漏洞源于权限管理不当,可能导致权限提升。以下产品和版本受到影响:SINAMICS G220 V6.4版本、SINAMICS S200 V6.4版本和SINAMICS S210 V6.4版本
CVSS Information
N/A
Vulnerability Type
N/A