CNNVD-202511-1812 Information

CNNVD ID

CNNVD-202511-1812

Related CVE

CVE-2025-59780

• CNNVD Published: 2025-11-15

Description (Chinese)

General Industrial Controls Lynx+ Gateway是印度General Industrial Controls公司的一款工业自动化网关。 General Industrial Controls Lynx+ Gateway存在访问控制错误漏洞，该漏洞源于嵌入式Web服务器缺少关键身份验证，可能导致攻击者发送GET请求获取敏感设备信息。

Description (English)

General Industrial Controls Lynx+ Gateway is an industrial automation gateway to the Indian company General Industrial Controls. There is an error access control loophole in General Industrial Controls Lynx+Gateway, which stems from the lack of critical identification on the embedded Web server, which may lead the attackers to send GET requests for sensitive equipment information.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

General Industrial Controls

Published

2025-11-15

Last Modified

2026-02-24

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-317-08.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-317-08