Lucene search
China National Vulnerability DatabaseCNVD-2023-75591HistoryOct 11, 2023 - 12:00 a.m.
Siemens SINEC NMS Incorrect Privilege Assignment Vulnerability
2023-10-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
siemens
sinec nms
incorrect privilege assignment
vulnerability
industrial network
arbitrary code
elevated privileges
central monitoring
Siemens SINEC NMS is a network management system (NMS) from Siemens, Germany, that can be used 24/7 to centrally monitor, manage and configure industrial networks with tens of thousands of devices, including safety-related areas. The Siemens SINEC NMS suffers from an Incorrect Privilege Assignment vulnerability, which occurs when an affected application assigns incorrect access privileges to a specific folder containing executable files and libraries. An attacker could exploit the vulnerability to inject arbitrary code and elevate privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| siemens sinec nms < v | eq | 2.0 |
Related
prion
prion
Improper access control
2023-10-10 11:15:00
nvd
nvd
CVE-2022-30527
2023-10-10 11:15:10
cve
cve
CVE-2022-30527
2023-10-10 11:15:10
cvelist
cvelist
CVE-2022-30527
2023-10-10 10:20:55
ics
ics
Siemens SINEC NMS
2023-10-12 12:00:00