tcpconfig: Rockwell Automation TCP/IP Configuration Information - Detect

漏洞描述

PoC代码[已公开]

id: tcpconfig

info:
  name: Rockwell Automation TCP/IP Configuration Information - Detect
  author: dhiyaneshDK
  severity: medium
  description: TCP/IP configuration information was detected.
  reference:
    - https://www.rockwellautomation.com/
    - https://www.exploit-db.com/ghdb/6782
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cwe-id: CWE-200
  metadata:
    max-request: 1
  tags: config,edb,logs,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/tcpconfig.html"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "TCP/IP Configuration"

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100f7c16205756696124c5cbd703649f64abe1ab9036fd3fc0a5cfaf60434e86d42022100da9547770b7a8847d12955a997d3318ab62b14985d264dd36b42efaad85554b3:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC CVE-2024-8852: All-in-One WP Migration < 7.87 - Unauthenticated Information Disclosure
• Windows PolicyConfiguration 计划任务特权提升漏洞(CVE-2025-60710)
• Windows 11 PolicyConfiguration 计划任务特权提升漏洞（CVE-2025-60710）
• POC CVE-2025-9985: Featured Image from URL (FIFU) <= 5.2.7 - Unauthenticated Information Exposure via Log File
• POC generic-php-files: Generic PHP Backup Information Disclosure
• POC mailgun-takeover: Mailgun Takeover Detection
• CNVD-2019-16798: Coremail Information Disclosure
• CVE-2019-8449: Jira Information Disclosure
• gitlab-api-user-enum: GitLab - User Information Disclosure Via Open API
• honeypot-detection: Honeypot Detection
• backup-files: Compressed Backup File - Detect
• shiro-key-detect: Shiro Key Detection
• POC CVE-2000-0114: Microsoft FrontPage Extensions - Information Disclosure