Lucene search
K

4 matches found

Prion
Prion
added 2023/01/10 12:15 p.m.20 views

Remote code execution

A vulnerability has been identified in Automation License Manager V5 All versions, Automation License Manager V6 All versions V6.0 SP9 Upd4. The affected component does not correctly validate the root path on folder related operations, allowing to modify files and folders outside the intended roo...

7.5CVSS8.2AI score0.01543EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/10 11:39 a.m.11 views

CVE-2022-43513

A vulnerability has been identified in Automation License Manager V5 All versions, Automation License Manager V6 All versions V6.0 SP9 Upd4, TeleControl Server Basic V3 All versions V3.1.2. The affected components allow to rename license files with user chosen input without authentication. This...

8.2CVSS8.1AI score0.00965EPSS
Exploits0References3
CVE
CVE
added 2023/01/10 11:39 a.m.125 views

CVE-2022-43513

Siemens Automation License Manager and TeleControl Server Basic are affected by CVE-2022-43513 (and related CVEs). The root cause is external control of file name or path: input provided by unauthenticated users can rename and move license files as SYSTEM, enabling file operations outside the int...

8.2CVSS8.4AI score0.00965EPSS
Exploits0References3Affected Software1
ICS
ICS
added 2023/01/10 12:0 a.m.29 views

Siemens Automation License Manager

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

9.8CVSS9.6AI score0.01543EPSS
Exploits0References11
Rows per page
Query Builder