Lucene search
China National Vulnerability DatabaseCNVD-2023-71220HistorySep 14, 2023 - 12:00 a.m.
Siemens QMS Automotive Security Bypass Vulnerability
2023-09-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
siemens
qms automotive
security bypass
vulnerability
qms.mobile
sensitive data
external storage
arbitrary code execution
denial of service
0.0004 Low
EPSS
Percentile
5.1%
Siemens QMS Automotive is a quality management system for the automotive industry from Siemens, Germany. A security bypass vulnerability exists in Siemens QMS Automotive, which stems from the affected application’s QMS.Mobile module storing sensitive application data in external, unsecured storage. An attacker could exploit the vulnerability to change the content, resulting in arbitrary code execution or a denial of service condition.
| CPE | Name | Operator | Version |
|---|---|---|---|
| siemens qms automotive < v | eq | 12.39 |
Related
nvd
nvd
CVE-2023-40728
2023-09-12 10:15:29
cve
cve
CVE-2023-40728
2023-09-12 10:15:29
prion
prion
Race condition
2023-09-12 10:15:00
cvelist
cvelist
CVE-2023-40728
2023-09-12 09:32:28
ics
ics
Siemens QMS Automotive
2023-09-14 12:00:00