Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:36 a.m.11 views

CVE-2022-40176

A vulnerability has been identified in Desigo PXM30-1 All versions V02.20.126.11-41, Desigo PXM30.E All versions V02.20.126.11-41, Desigo PXM40-1 All versions V02.20.126.11-41, Desigo PXM40.E All versions V02.20.126.11-41, Desigo PXM50-1 All versions V02.20.126.11-41, Desigo PXM50.E All versions...

8CVSS7.6AI score0.01146EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.23 views

Siemens Desigo PXM Devices Improper Neutralization of Special Elements Used in an OS Command (CVE-2022-40176)

A vulnerability has been identified in Desigo PXM30-1 All versions V02.20.126.11-41, Desigo PXM30.E All versions V02.20.126.11-41, Desigo PXM40-1 All versions V02.20.126.11-41, Desigo PXM40.E All versions V02.20.126.11-41, Desigo PXM50-1 All versions V02.20.126.11-41, Desigo PXM50.E All versions...

8CVSS8AI score0.01146EPSS
Exploits0References3
CVE
CVE
added 2022/10/11 12:0 a.m.61 views

CVE-2022-40176

CVE-2022-40176 concerns an OS command injection in Siemens Desigo PXM devices caused by improper neutralization of file names in a restore input package. The vulnerability lets a remote, low-privilege attacker execute arbitrary commands with root privileges during a restore operation, potentially...

8CVSS8AI score0.01146EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/10/11 12:0 a.m.55 views

Siemens Desigo PXM Devices

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Desigo PXM Devices Vulnerabilities: OS Command Injection, Exposure of Sensitive Information to an Unauthorized Actor, Cross-Site Scripting, Cross-Site Request Forgery, Improper...

8.8CVSS8.9AI score0.01146EPSS
Exploits0References11
Rows per page
Query Builder