Описание
A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.
Ссылки
- ExploitMitigationThird Party Advisory
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
EPSS
9.1 Critical
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
Связанные уязвимости
A file write vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.
Уязвимость функции SecureTransferFiles ядра программного пакета для работы с данными устройств промышленного Интернета вещей (IoT) Open Automation Software, позволяющая нарушителю выполнить произвольный код
EPSS
9.1 Critical
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2