Lucene search
PRIOn knowledge basePRION:CVE-2023-26293HistoryApr 11, 2023 - 10:15 a.m.
Path traversal
2023-04-1110:15:00
PRIOn knowledge base
www.prio-n.com
18
tia portal
path traversal
arbitrary file creation
vulnerability
arbitrary code execution
nvd
A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V15 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 6), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 1). Affected products contain a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tia_portal | eq | 16 | |
| tia_portal | eq | 18 | |
| tia_portal | eq | 15 | |
| tia_portal | eq | 17 update1 | |
| tia_portal | eq | 17 update2 | |
| tia_portal | eq | 17 update3 | |
| tia_portal | eq | 17 update4 | |
| tia_portal | eq | 17 update5 | |
| tia_portal | eq | 17 |
Related
ics
ics
Siemens Path Traversal TIA Portal
2023-04-13 12:00:00
nvd
nvd
CVE-2023-26293
2023-04-11 10:15:18
cve
cve
CVE-2023-26293
2023-04-11 10:15:18
cvelist
cvelist
CVE-2023-26293
2023-04-11 09:03:02