2 matches found
CVE-2018-11460
SiemenS CVE-2018-11460 affects SINUMERIK CNC controllers (808D, 828D, 840D sl) where a local attacker with elevated privileges can modify a CRAMFS archive to cause the system to load a tampered CRAMFS after reboot, executing attacker-controlled code with root privileges. Affected versions include...
ICSA-18-345-02 Siemens SINUMERIK Controllers (Update A)
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SINUMERIK Controllers Vulnerabilities: Heap-based Buffer Overflow, Integer Overflow or Wraparound, Protection Mechanism Failure, Permissions, Privileges, and Access Controls,...