Lucene search

K

CVE-2024-54005

🗓️ 10 Dec 2024 13:15:54Reported by siemensType 
cvelist
 cvelist
🔗 www.cve.org👁 12 Views

Vulnerability in COMOS could allow file extraction via XML External Entity injection in communication.

Show more
Related
Affected
Refs
ReporterTitlePublishedViews
Family
CNVD
Siemens COMOS XXE Injection Vulnerability (CNVD-2024-47911)
11 Dec 202400:00
cnvd
CVE
CVE-2024-54005
10 Dec 202414:30
cve
NVD
CVE-2024-54005
10 Dec 202414:30
nvd
Vulnrichment
CVE-2024-54005
10 Dec 202413:54
vulnrichment
[
  {
    "vendor": "Siemens",
    "product": "COMOS V10.3",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.3.3.5.8",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.0",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.2",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "*",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.3",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.4.3.0.47",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.4",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.4.4.2",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "COMOS V10.4.4.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V10.4.4.1.21",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
10 Dec 2024 13:54Current
CVSS35.1
CVSS45.9
EPSS0.001
12
.json
Report