SSA-064257 — Vulnetix

SSA-064257 PUBLISHED CVSS 7.800000190734863 HIGH

SIPORT before V3.4.0 contains a privilege escalation vulnerability which could allow a local attacker with an unprivileged account to override or modify the service executable and subsequently gain elevated privileges. Siemens has released a new version for SIPORT and recommends to update to the latest version.

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
	SIPORT

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-064257.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-064257.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/109826608/ (circl)

Timeline

Nov 12, 2024 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-064257.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-064257.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109826608/ fix

Open in Interactive Console →