Lucene search

CVE-2022-35868

🗓️ 14 Feb 2023 11:12:15Reported by siemensType

Vulnerability in TIA Multiuser Server versions allowing privilege escalatio

Reporter	Title	Published	Views	Family All 5
Prion	Path traversal	14 Feb 202311:15	–	prion
NVD	CVE-2022-35868	14 Feb 202311:15	–	nvd
ICS	Siemens TIA Project-Server formerly known as TIA Multiuser Server	14 Feb 202300:00	–	ics
Cvelist	CVE-2022-35868	14 Feb 202310:36	–	cvelist
CNVD	Siemens TIA Project-Server formerly untrusted search path vulnerability	17 Feb 202300:00	–	cnvd

Nvd

Node

siemens tia_multiuser_serverMatch14

siemens tia_multiuser_serverMatch15

siemens tia_multiuser_serverMatch15.1-

siemens tia_multiuser_serverMatch16

siemens tia_project-serverMatch1.0

siemens tia_project-serverMatch17-

siemens tia_project-serverMatch17update1

siemens tia_project-serverMatch17update4

[
  {
    "vendor": "Siemens",
    "product": "TIA Multiuser Server V14",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TIA Multiuser Server V15",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V15.1 Update 8"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TIA Project-Server",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V1.1"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TIA Project-Server V16",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TIA Project-Server V17",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V17 Update 6"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-640968.html
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-640968.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Feb 2023 11:15Current

6.6Medium risk

Vulners AI Score6.6

CVSS36.7

EPSS0.00044

CWE-426