CNNVD-202511-2943 Information

CNNVD ID

CNNVD-202511-2943

Related CVE

CVE-2025-59890

• CNNVD Published: 2025-11-27

Description (Chinese)

Eaton Galileo是美国伊顿（Eaton）公司的一个用于设备配置、监控和系统集成的专业化管理软件平台。 Eaton Galileo存在安全漏洞，该漏洞源于文件归档上传功能输入清理不当，可能导致本地攻击者执行未经授权的代码或命令。

Description (English)

Eaton Galileo is a specialized management software platform for equipment configuration, monitoring and system integration at Eaton, United States. There is a security loophole in Eaton Galileo, which stems from the improper clean-up of file uploads, which may lead to unauthorized codes or orders being executed by local attackers.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

伊顿

Published

2025-11-27

Last Modified

2026-02-24

References

https://www.eaton.com/content/dam/eaton/company/news-insights/cybersecurity/security-bulletins/etn-va-2025-1024.pdf https://access.redhat.com/security/cve/cve-2025-59890

Patch

https://applications.eaton.eu/sdlc?f1=1454&f2=1242&f3=2221&LX=11