In Symphony Plus Operations and Symphony Plus Historian, some services can be vulnerable to privilege escalation attacks. An unprivileged (but authenticated) user could execute arbitrary code and result in privilege escalation, depending on the user that the service runs as.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HAbb Symphony \+ Historian
APPAbb3.03.1Abb Symphony \+ Operations
APPAbb1.12.02.13.03.13.23.3
Powiązane podatności
In S+ Operations and S+ Historian, a successful SQL injection exploit can read sensitive data from the databas...
In S+ Operations and S+ History, it is possible that an unauthenticated user could inject values to the Operat...
The affected versions of S+ Operations (version 2.1 SP1 and earlier) used an approach for user authentication ...
Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution a...
An authenticated user might execute malicious code under the user context and take control of the system. S+ O...