Vulnetix
Try Vulnetix Request Demo
CVE-2020-28392 PUBLISHED CVSS 7.800000190734863 HIGH

A vulnerability has been identified in SIMARIS configuration (All versions). During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges should a user with elevated credentials log onto the machine.

EPSS 0.04% · 11.0th percentile

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.04%
11.0th percentile

Affected Products

VendorProductVersions
SiemensSIMARIS configurationAll versions < V4.0.1
siemenssimaris_configuration0

Timeline

References

Open in Interactive Console →