Vulnetix
Try Vulnetix Request Demo
SSA-629512 PUBLISHED CVSS 7.800000190734863 HIGH

The latest updates for TIA Portal fix a vulnerability that could allow a local attacker to execute arbitrary code with SYSTEM privileges. Update: The previously provided fixes only correctly set the permissions on English Windows versions. Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C

Affected Products

VendorProductVersions
TIA Portal V15
TIA Portal V14
TIA Portal V17
TIA Portal V16

Timeline

References

Open in Interactive Console →