The affected product is vulnerable to a network-based attack by threat actors supplying a crafted, malicious XML payload designed to trigger an external entity reference call.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:HFanuc Roboguide
APPFanuc≤ 9.40083.00.05
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2021-38483MEDIUM6.0ten sam produkt
The affected product is vulnerable to misconfigured binaries, allowing users on the target PC with SYSTEM leve...
CVE-2021-43933MEDIUM6.1ten sam produkt
The affected product is vulnerable to a network-based attack by threat actors sending unimpeded requests to th...
CVE-2021-43986MEDIUM6.0ten sam produkt
The setup program for the affected product configures its files and folders with full access, which may allow ...
CVE-2021-43988MEDIUM6.1ten sam produkt
The affected product is vulnerable to a network-based attack by threat actors utilizing crafted naming convent...
CVE-2021-32996HIGH7.5ten sam vendor
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the devi...