CNNVD-202510-3166 Information
CNNVD ID
CNNVD-202510-3166
Related CVE
- CNNVD Published: 2025-10-22
Description (Chinese)
Sauter modu680-AS是瑞士Sauter公司的一个模块化自动化站兼web服务器。 Sauter modu680-AS存在命令注入漏洞,该漏洞源于添加密码保护自签名证书时特殊元素中和不当,可能导致高权限远程攻击者影响openssl命令参数。
Description (English)
Sauter Modu680-AS is a modular automation station and web server at Sauter, Switzerland. Sauter Modu680-AS has an order to inject a loophole, which arises from the inappropriateness of the special element when adding a password to protect the self-signed certificate, and may result in a high-authority remote attacker influencing the parameters of the openssl command.
Hazard Level
Critical
Vulnerability Type
命令注入
Affected Vendor
Sauter
Published
2025-10-22
Last Modified
2026-02-24
References
https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json https://access.redhat.com/security/cve/cve-2025-41721
Patch
https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json
Share on: