Lucene search

[email protected]NVD:CVE-2013-3927

HistoryJun 18, 2013 - 6:55 p.m.

CVE-2013-3927

2013-06-1818:55:09

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.1

Confidence

Low

EPSS

Percentile

5.1%

JSON

Unspecified vulnerability in the client library in Siemens COMOS 9.2 before 9.2.0.6.10 and 10.0 before 10.0.3.0.4 allows local users to obtain unintended write access to the database by leveraging read access.

Affected configurations

Nvd

Node

siemenscomosMatch9.2

siemenscomosMatch10.0

VendorProductVersionCPE
siemenscomos9.2cpe:2.3:a:siemens:comos:9.2:*:*:*:*:*:*:*
siemenscomos10.0cpe:2.3:a:siemens:comos:10.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	comos	9.2	cpe:2.3:a:siemens:comos:9.2:::::::*
siemens	comos	10.0	cpe:2.3:a:siemens:comos:10.0:::::::*

References

www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-194865.pdf

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.1

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2013-3927

prion1 ics1 cve1 cvelist1