Lucene search
SiemensCVELIST:CVE-2018-11455HistoryAug 07, 2018 - 3:00 p.m.
CVE-2018-11455
2018-08-0715:00:00
CWE-22
siemens
www.cve.org
A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote attacker to move arbitrary files, which can result in code execution, compromising confidentiality, integrity and availability of the system. Successful exploitation requires a network connection to the affected device. The attacker does not need privileges or special conditions of the system, but user interaction is required.
CNA Affected
[
{
"product": "Automation License Manager 5, Automation License Manager 6",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "Automation License Manager 5 : All versions < 5.3.4.4"
},
{
"status": "affected",
"version": "Automation License Manager 6 : All versions < 6.0.1"
}
]
}
]Related
cve
cve
CVE-2018-11455
2018-08-07 15:29:00
prion
prion
Directory traversal
2018-08-07 15:29:00
nvd
nvd
CVE-2018-11455
2018-08-07 15:29:00
nessus
nessus
Siemens Automation License Manager 5.x < 5.3.4.4 Multiple Vulnerabilities
2018-08-27 00:00:00
ics
ics
Siemens Automation License Manager
2018-08-14 12:00:00