ID
VAR-201610-0724
TITLE
Languang DSS-MAX Decision Support System Has SQL Injection Vulnerability
Trust: 0.6
DESCRIPTION
Languang Innovation is a leading domestic supplier of digital workshop solutions, has a high market share in aerospace DNC / MDC / MES, and is the main integrator of CIMCO in China. Languang DSS-Max is a DNC / MDC production decision support system, mainly used for machine tool data collection and analysis, and provides support for production decisions based on machine tool utilization and other information. Languang DSS-Max system provides users with an access interface in WEB mode. Its WEB login interface is not strict in input checking and there is a SQL injection vulnerability. Use β1βor 1 = 1-β as the user name, and the password is blank, you can directly enter the system.
Trust: 0.6
IOT TAXONOMY
| category: | ['IoT'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | languang innovation | model: | dss-max decision support system | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | Languang DSS-MAX Decision Support System Has SQL Injection Vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/80679 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2016-06994 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2016-06994 |
LAST UPDATE DATE
2022-05-04T08:56:29.200000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2016-06994 | date: | 2016-09-01T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2016-06994 | date: | 2016-10-07T00:00:00 |