A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HSiemens Sinumerik Mc
HWSiemenswszystkie wersjeSiemens Sinumerik Mc Firmware
OSSiemens1.15< 1.15Siemens Sinumerik One
HWSiemenswszystkie wersjeSiemens Sinumerik One Firmware
OSSiemens6.15< 6.15
Powiązane podatności
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lo...
The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could al...
Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.8...
Buffer overflow RCE z uprawnieniami root w PAN-OS Captive Portal
Fortinet – Auth Bypass przez FortiCloud SSO w wielu produktach