2 matches found
CVE-2017-6866
Siemens XHQ server (versions 4 prior to 4.7.1.3 and 5 prior to 5.0.0.2) contains an improper access control vulnerability (CWE-284) that could allow an authenticated, low-privileged remote user to read data beyond their configured permission level. The root cause is an access-control weakness in ...
Siemens XHQ
CVSS v3 6.5 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Siemens Equipment: XHQ Vulnerability: Improper Access Control AFFECTED PRODUCTS Siemens reports that the vulnerability affects the following versions of the XHQ operations intelligence product line: XHQ 4: All version...