CNNVD-202512-090 Information
CNNVD ID
CNNVD-202512-090
Related CVE
- CNNVD Published: 2025-12-01
Description (Chinese)
Socomec Easy Config System是法国Socomec公司的一个自动化管理电力和不间断电源的平台。 Socomec Easy Config System 2.6.1.0版本存在安全漏洞,该漏洞源于用户配置文件管理功能存在认证绕过,可能导致未经授权的访问。
Description (English)
Socomec Easy Config Systems is an automated power and uninterrupted power management platform for Socomec, France. There is a security loophole in version 2.6.1.0 of Socomec Easy Config System, which stems from the authentication circumvention of the user configuration file management function, which may lead to unauthorized access.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
溯高美索克曼
Published
2025-12-01
Last Modified
2026-02-24
References
https://www.socomec.fr/sites/default/files/2025-11/CVE-2024-45370—ECS-2610—CVSS31_VULNERABILITIES_2025-11-19-09-45-29_English_PLURI_3.pdf https://talosintelligence.com/vulnerability_reports/TALOS-2024-2117 https://access.redhat.com/security/cve/cve-2024-45370
Patch
https://www.socomec.us/en-us/easy-config-system
Share on: