VDB

CVE-2024-30208

CVE-2024-30208 PUBLISHED CVSS 6.300000190734863 MEDIUM

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA30) (All versions < V3.0.1.1). The "DBTest" tool of SIMATIC RTLS Locating Manager does not properly enforce access restriction. This could allow an authenticated local attacker to extract sensitive information from memory.

EPSS 0.04% · 14.1th percentile

Risk Scores

CVSS 3.1
6.300000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L/E:P/RL:O/RC:C
EPSS Score
0.04%
14.1th percentile

Affected Products

VendorProductVersions
siemenssimatic_rtls_locating_manager0, 0
SiemensSIMATIC RTLS Locating Manager0, 0, 0

Timeline

  • May 14, 2024 CVE Published
  • May 14, 2024 CVE Updated
  • May 15, 2024 EPSS Score
  • Jun 9, 2024 EPSS Score
  • Jul 3, 2024 EPSS Score
  • Jul 27, 2024 EPSS Score
  • Aug 20, 2024 EPSS Score
  • Sep 12, 2024 EPSS Score
  • Oct 4, 2024 Coalition ESS Score
  • Oct 6, 2024 EPSS Score
  • Oct 30, 2024 EPSS Score
  • Nov 23, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›