A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privileges when executing some operations, which could allow a user with low permissions to arbitrary modify files that should be protected against writing.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-388646.pdf | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2020-08-14T15:24:06
Updated: 2020-08-14T15:24:06
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7583
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-08-14T16:15:17.727
Modified: 2020-08-21T14:51:43.643
Link: CVE-2020-7583
JSON object: View
Redhat Information
No data.