EUVD-2020-20851

Malware in sbrugna...

Siemens SIMARIS configuration insecure folder permissions vulnerability

Siemens SIMARIS configuration supports the full digital engineering process when building distribution systems, from planning through costing and tender preparation to standards-compliant distribution system documentation. A security vulnerability exists in Siemens SIMARIS configuration. An...

CVE-2020-28392

A vulnerability has been identified in SIMARIS configuration All versions V4.0.1. During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges shoul...

CVE-2020-28392

A vulnerability has been identified in SIMARIS configuration All versions V4.0.1. During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges shoul...

Default configuration

A vulnerability has been identified in SIMARIS configuration All versions V4.0.1. During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges shoul...

CVE-2020-28392

Siemens SIMARIS configuration is affected by CVE-2020-28392: all versions prior to 4.0.1 install with incorrect default permissions on the application folder and subfolders, enabling persistence or privilege escalation for users with elevated credentials. The ICS advisory confirms the vulnerabili...

CVE-2020-28392

A vulnerability has been identified in SIMARIS configuration All versions V4.0.1. During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges shoul...

siemens SIMARIS configuratio 权限许可和访问控制问题漏洞

Siemens SIMARIS configuration supports the full digital engineering process when building distribution systems, from planning through costing and tender preparation to standards-compliant distribution system documentation. A security vulnerability exists in Siemens SIMARIS configuration. An...

Siemens SIMARIS Configuration (Update A)

1. EXECUTIVE SUMMARY CVSS v3 4.4 ATTENTION: Low skill level to exploit Vendor: Siemens Equipment: SIMARIS configuration Vulnerability: Incorrect Default Permissions 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-21-040-08 Siemens SIMARIS...