3 matches found
CVE-2023-38641
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.10. The affected application's database service is executed as NT AUTHORITY\SYSTEM. This could allow a local attacker to execute operating system commands with elevated privileges...
CVE-2023-38641
Siemens SICAM TOOLBOX II is affected by CVE-2023-38641 (Execute with Unnecessary Privileges). All versions prior to V07.10 expose a database service running as NT AUTHORITY\SYSTEM, enabling a local attacker with low privileges and no user interaction to execute OS commands with elevated privilege...
Siemens SICAM TOOLBOX II
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...