Описание
The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.
The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.
Связанные уязвимости
The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.
Уязвимость SCADA-системы со встроенным веб-сервером WebHMI, связанная с отсутствием ограничений на загрузку файлов, позволяющая нарушителю выполнить произвольный код