3/6/2024 0 Comments Siemens desigo cc download![]() ![]() Siemens has identified the following specific workarounds and mitigations that users can apply to reduce the risk: Users of Version 3.x, apply the latest patch (Login required).Users of Version 4.x, apply the latest patch (Login required).Siemens has released patches for the affected products and recommends specific countermeasures for unpatched systems: ![]() Siemens ProductCERT reported this vulnerability to CISA. CRITICAL INFRASTRUCTURE SECTORS: Commercial Facilities, Government Facilities.A CVSS v3 base score of 9.8 has been calculated the CVSS vector string is ( AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Desigo CC Compact: Versions 3.x and 4.xģ.2 VULNERABILITY OVERVIEW 3.2.1 IMPROPER CONTROL OF GENERATION OF CODE ('CODE INJECTION') CWE-94Īffected applications are delivered with a third-party component that contains a remote code execution vulnerability if the advanced reporting engine is enabled.ĬVE-2020-10055 has been assigned to this vulnerability.The following Siemens products and versions are affected: Successful exploitation of this vulnerability could allow an attacker to gain remote code execution on the server with SYSTEM privileges. ATTENTION: Exploitable remotely/low skill level to exploit.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |