CNNVD-202510-3168 Information

CNNVD ID

CNNVD-202510-3168

Related CVE

CVE-2025-41720

• CNNVD Published: 2025-10-22

Description (Chinese)

Sauter modu680-AS是瑞士Sauter公司的一个模块化自动化站兼web服务器。 Sauter modu680-AS 存在安全漏洞，该漏洞源于仅验证文件扩展名，可能导致低权限远程攻击者上传任意数据。

Description (English)

Sauter Modu680-AS is a modular automation station and web server at Sauter, Switzerland. There is a security loophole in Sauter Modu680-AS, which results from the mere verification of file extensions, which could lead to the uploading of random data by low-authority remote assailants.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Sauter

Published

2025-10-22

Last Modified

2026-02-24

References

https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json https://access.redhat.com/security/cve/cve-2025-41720

Patch

https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json