CNNVD-202510-2013 Information
CNNVD ID
CNNVD-202510-2013
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Rockwell Automation Comms-1783-NATR是美国罗克韦尔(Rockwell Automation)公司的一款工业以太网地址转换设备。 Rockwell Automation Comms-1783-NATR存在安全漏洞,该漏洞源于受影响表单缺少CSRF检查,可能导致攻击者通过特制链接诱骗登录管理员修改配置。
Description (English)
Rockwell Automation Comms-1783-NATR is an industry of Rockwell Automation in the United States that converts equipment to an etho-net address. Lockwell Automation Comms-1783-NATR has a security loophole, which stems from the lack of CSRF checks on the affected forms and may lead the attackers to lure the login administrator to modify the configuration through a special link.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
罗克韦尔
Published
2025-10-14
Last Modified
2026-02-24
References
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1756.html
Patch
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1756.html
Share on: