Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2026-2330
Vulnerability Description
An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could place a manipulated parameter file that becomes active after a reboot, allowing modification of critical device settings, including network configuration and application parameters.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Vulnerability Type
对外部实体的文件或目录可访问
Vulnerability Title
SICK Lector85x和SICK SICK Lector83x 安全漏洞
Vulnerability Description
SICK Lector85x和SICK SICK Lector83x都是德国SICK公司的一系列二维码图像识别读码器。 SICK Lector85x和SICK SICK Lector83x存在安全漏洞,该漏洞源于白名单执行不完整,攻击者可能通过CROWN REST接口访问设备上受限制的文件系统区域。
CVSS Information
N/A
Vulnerability Type
N/A