CVE-2023-40728 — Vulnetix

les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitrair…"/> les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitrair…"/> les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitrair…"/>

CVE-2023-40728 PUBLISHED CVSS 7.800000190734863 HIGH

De multiples vulnérabilités ont été découvertes dans <span class="textit">les produits Siemens</span>. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une élévation de privilèges.

EPSS 0.06% · 19.8th percentile

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.06%

19.8th percentile

Affected Products

Vendor	Product	Versions
Siemens	N/A
siemens	qms_automotive	0, 0, 0
Intel Corporation	Microprocessors with Speculative Execution	All

Exploit Intelligence

Berisi 2 program C dari exploitDB untuk melakukan privillage eskalation untuk ubuntu 16.04 (github-poc)
Berisi 2 program C dari exploitDB untuk melakukan privillage eskalation untuk ubuntu 16.04 (github-poc)
Berisi 2 program C dari exploitDB untuk melakukan privillage eskalation untuk ubuntu 16.04 (github-poc)
Berisi 2 program C dari exploitDB untuk melakukan privillage eskalation untuk ubuntu 16.04 (github-poc)
ZhiQiAnSecFork/cve-2017-16995 (github-poc)
ZhiQiAnSecFork/cve-2017-16995 (github-poc)
ZhiQiAnSecFork/cve-2017-16995 (github-poc)
ZhiQiAnSecFork/cve-2017-16995 (github-poc)
mareks1007/cve-2017-16995 (github-poc)
mareks1007/cve-2017-16995 (github-poc)

…and 330 more exploits

Timeline

Jan 4, 2018 PoC Published
Jan 8, 2018 PoC Published
Jan 12, 2018 PoC Published
Jan 20, 2018 PoC Published
Jan 29, 2018 PoC Published
Feb 22, 2018 PoC Published
Apr 11, 2018 PoC Published
May 22, 2018 PoC Published
Nov 16, 2018 PoC Published
Dec 31, 2018 PoC Published
May 15, 2019 PoC Published
Sep 12, 2023 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-981975.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-147266.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-957369.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-240541.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-190839.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-711309.html advisory
https://cert-portal.siemens.com/productcert/html/ssa-278349.html advisory
https://spectreattack.com/ url
http://nvidia.custhelp.com/app/answers/detail/a_id/4609 url
USN-3560-1 vendor-advisory
[debian-lts-announce] 20180714 [SECURITY] [DLA 1422-1] linux security update mailing-list
DSA-4187 vendor-advisory
USN-3542-2 vendor-advisory
GLSA-201810-06 vendor-advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html url
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html url
USN-3540-2 vendor-advisory
https://access.redhat.com/security/vulnerabilities/speculativeexecution url
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002 url
[debian-lts-announce] 20180906 [SECURITY] [DLA 1497-1] qemu security update mailing-list

…and 83 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›