Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Beckhoff: Deserialization of untrusted data by TwinCAT 3 Engineering
Vulnerability Description
An unauthenticated attacker can trick a local user into executing arbitrary commands by opening a deliberately manipulated project file with an affected engineering tool. These arbitrary commands are executed in the user context.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
Beckhoff TwinCAT 代码问题漏洞
Vulnerability Description
Beckhoff TwinCAT是德国Beckhoff公司的一套由实时环境和在开发环境中执行控制程序的实时系统组成的软件系统。该系统主要用于PLC(可编程逻辑控制器)编程、诊断和系统配置等。 Beckhoff TwinCAT存在代码问题漏洞,该漏洞源于本地用户可能执行任意命令,可能导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A