CNNVD-202511-435 Information
CNNVD ID
CNNVD-202511-435
Related CVE
- CNNVD Published: 2025-11-05
Description (Chinese)
Roboticsware FA-Panel6等都是日本Roboticsware公司的一个监控系统开发软件包。 Roboticsware多款产品存在代码问题漏洞,该漏洞源于Windows服务注册路径未加引号,可能导致任意代码执行和权限提升。以下产品受到影响:Roboticsware FA-Panel6、Roboticsware BA-Panel6、Roboticsware PA-Panel6和Roboticsware FA-Server6。
Description (English)
Roboticsware FA-Panel6 and others are a control system development software package for the Japanese company Roboticsware. There is a code gap in multiple Roboticsware products, which stems from the lack of quotation marks on the Windows service registration path, which may lead to arbitrary code execution and enhanced privileges. The following products were affected: Roboticsware FA-Panel6, Roboticsware BA-Panel6, Roboticsware PA-Panel6 and Roboticsware FA-Server6.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
Roboticsware
Published
2025-11-05
Last Modified
2026-02-24
References
https://www.roboticsware.com/dev-jp/2025/10/28/announcements-20251028/ https://jvn.jp/en/jp/JVN92563420/ https://access.redhat.com/security/cve/cve-2025-64151
Patch
https://www.roboticsware.com/dev-jp/2025/10/28/announcements-20251028/
Share on: