Filtered by vendor Siemens
Subscriptions
Filtered by product Simatic Rtls Locating Manager
Subscriptions
Total
7 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2020-10049 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 7.3 High |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The start-stop scripts for the services of the affected application could allow a local attacker to include arbitrary commands that are executed when services are started or stopped interactively by system administrators. | ||||
CVE-2020-10053 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 5.5 Medium |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as database credentials in configuration files. A local attacker with access to the configuration files could use this information to launch further attacks. | ||||
CVE-2020-10051 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 7.8 High |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). Multiple services of the affected application are executed with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to inject arbitrary commands that are execeuted instead of the legitimate service. | ||||
CVE-2020-10050 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 7.8 High |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The directory of service executables of the affected application could allow a local attacker to include arbitrary commands that are executed with SYSTEM privileges when the system restarts. | ||||
CVE-2020-10054 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 5.5 Medium |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application does not properly handle the import of large configuration files. A local attacker could import a specially crafted file which could lead to a denial-of-service condition of the application service. | ||||
CVE-2020-10052 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-04 | 5.5 Medium |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as usernames and passwords in log files. A local attacker with access to the log files could use this information to launch further attacks. | ||||
CVE-2024-33583 | 1 Siemens | 1 Simatic Rtls Locating Manager | 2024-08-02 | 3.3 Low |
A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA30) (All versions < V3.0.1.1). Affected application contains a hidden configuration item to enable debug functionality. This could allow an authenticated local attacker to gain insight into the internal configuration of the deployment. |
Page 1 of 1.