A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) contains an SQL injection vulnerability in its XML-based communication protocol as provided by default on ports 5444/tcp and 5440/tcp. An authenticated remote attacker could exploit this vulnerability to read or modify the CCS database and potentially execute administrative database operations or operating system commands.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2020-03-10T19:16:17

Updated: 2024-08-05T02:09:39.650Z

Reserved: 2019-11-26T00:00:00

Link: CVE-2019-19292

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-03-10T20:15:19.243

Modified: 2024-01-09T10:15:11.703

Link: CVE-2019-19292

cve-icon Redhat

No data.