VDB
SSA-988345
SSA-988345
PUBLISHED
CVSS 7.800000190734863 HIGH
A vulnerability in Xpedition Designer could allow an attacker with an unprivileged account to override or modify the service executable and subsequently gain elevated privileges. Siemens has released updates for the affected products and recommends to update to the latest versions.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xpedition Designer VX.2.11 | ||
| Xpedition Designer VX.2.12 | ||
| Xpedition Designer VX.2.13 | ||
| Xpedition Designer VX.2.10 |
Exploit Intelligence
- https://cert-portal.siemens.com/productcert/html/ssa-988345.html (circl)
- https://cert-portal.siemens.com/productcert/csaf/ssa-988345.json (circl)
- https://cert-portal.siemens.com/productcert/pdf/ssa-988345.pdf (circl)
- https://cert-portal.siemens.com/productcert/txt/ssa-988345.txt (circl)
- https://support.sw.siemens.com/en-US/product/852852130/ (circl)
Timeline
- CVE Published
References
- https://cert-portal.siemens.com/productcert/html/ssa-988345.html advisory
- https://cert-portal.siemens.com/productcert/csaf/ssa-988345.json advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-988345.pdf advisory
- https://cert-portal.siemens.com/productcert/txt/ssa-988345.txt advisory
- https://support.sw.siemens.com/en-US/product/852852130/ fix