Lucene search
HistoryAug 09, 2013 - 7:55 p.m.
CVE-2013-4943
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrictions by leveraging COMOS project access.
Affected configurations
Node
siemenscomosMatch9.1
ORsiemenscomosMatch9.2
ORsiemenscomosMatch10.0
Related
prion
prion
Design/Logic Flaw
2013-08-09 19:55:00
ics
ics
Siemens COMOS Privilege Escalation Vulnerability
2013-08-21 12:00:00
cvelist
cvelist
CVE-2013-4943
2013-08-09 19:00:00
cve
cve
CVE-2013-4943
2013-08-09 19:55:07
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2013-4943