In S+ Operations and S+ History, it is possible that an unauthenticated user could inject values to the Operations History server (or standalone S+ History server) and ultimately write values to the controlled process.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HAbb Symphony \+ Historian
APPAbb3.03.1Abb Symphony \+ Operations
APPAbb1.12.02.13.03.13.23.3
Powiązane podatności
In S+ Operations and S+ Historian, a successful SQL injection exploit can read sensitive data from the databas...
The affected versions of S+ Operations (version 2.1 SP1 and earlier) used an approach for user authentication ...
In Symphony Plus Operations and Symphony Plus Historian, some services can be vulnerable to privilege escalati...
Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution a...
An authenticated user might execute malicious code under the user context and take control of the system. S+ O...