Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.SIEMENS_ALM_CVE-2022-43514.NBINHistoryJul 01, 2024 - 12:00 a.m.
Siemens Automation License Manager Path Traversal (CVE-2022-43514)
2024-07-0100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
1
siemens
automation
license manager
path traversal
cve-2022-43514
scanner
binary data
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
The Siemens Automation License Manager (ALM) running on the remote host is affected by a path traversal vulnerability. An unauthenticated, remote attacker could exploit this to upload arbitrary files to any folder on the remote host.
Binary data siemens_alm_cve-2022-43514.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | automation_license_manager | cpe:/a:siemens:automation_license_manager |
Related
cnvd
cnvd
Siemens Automation License Manager Path Traversal Vulnerability
2023-01-13 00:00:00
nessus
nessus
ics
ics
Siemens Automation License Manager
2023-01-13 12:00:00
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
prion
prion
Remote code execution
2023-01-10 12:15:00
nvd
nvd
CVE-2022-43514
2023-01-10 12:15:23
cve
cve
CVE-2022-43514
2023-01-10 12:15:23
cvelist
cvelist
CVE-2022-43514
2023-01-10 11:39:39
thn
thn
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
Related for SIEMENS_ALM_CVE-2022-43514.NBIN