CVE-2022-45139漏洞

admin

0
文章

0
评论

2023-11-30 03:27:27 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

CVE-2022-45139漏洞

CVE编号

CVE-2022-45139

利用情况

暂无

补丁情况

N/A

披露时间

2023-02-27

漏洞描述

A CORS Misconfiguration in the web-based management allows a malicious third party webserver to misuse all basic information pages on the webserver. In combination with CVE-2022-45138 this could lead to disclosure of device information like CPU diagnostics. As there is just a limited amount of information readable the impact only affects a small subset of confidentiality.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://cert.vde.com/en/advisories/VDE-2022-060/

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	wago	751-9301_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	751-9301_firmware	22	-
	运行在以下环境
	系统	wago	751-9301_firmware	23	-
	运行在以下环境
	系统	wago	752-8303/8000-002_firmware	*	From (including) 18	Up to (excluding) 22
	运行在以下环境
	系统	wago	752-8303/8000-002_firmware	22	-
	运行在以下环境
	系统	wago	752-8303/8000-002_firmware	23	-
	运行在以下环境
	系统	wago	pfc100_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	pfc100_firmware	22	-
	运行在以下环境
	系统	wago	pfc100_firmware	23	-
	运行在以下环境
	系统	wago	pfc200_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	pfc200_firmware	22	-
	运行在以下环境
	系统	wago	pfc200_firmware	23	-
	运行在以下环境
	系统	wago	touch_panel_600_advanced_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	touch_panel_600_advanced_firmware	22	-
	运行在以下环境
	系统	wago	touch_panel_600_advanced_firmware	23	-
	运行在以下环境
	系统	wago	touch_panel_600_marine_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	touch_panel_600_marine_firmware	22	-
	运行在以下环境
	系统	wago	touch_panel_600_marine_firmware	23	-
	运行在以下环境
	系统	wago	touch_panel_600_standard_firmware	*	From (including) 16	Up to (excluding) 22
	运行在以下环境
	系统	wago	touch_panel_600_standard_firmware	22	-
	运行在以下环境
	系统	wago	touch_panel_600_standard_firmware	23	-
	运行在以下环境
	硬件	wago	751-9301	-	-
	运行在以下环境
	硬件	wago	752-8303/8000-002	-	-
	运行在以下环境
	硬件	wago	pfc100	-	-
	运行在以下环境
	硬件	wago	pfc200	-	-
	运行在以下环境
	硬件	wago	touch_panel_600_advanced	-	-
	运行在以下环境
	硬件	wago	touch_panel_600_marine	-	-
	运行在以下环境
	硬件	wago	touch_panel_600_standard	-	-