A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile module of the affected application stores sensitive application data in an external insecure storage. This could allow an attacker to alter content, leading to arbitrary code execution or denial-of-service condition.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-147266.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2023-09-12T09:32:28.603Z
Updated: 2023-09-12T09:32:28.603Z
Reserved: 2023-08-21T10:57:08.486Z
Link: CVE-2023-40728
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-12T10:15:29.210
Modified: 2023-09-14T17:28:40.837
Link: CVE-2023-40728
JSON object: View
Redhat Information
No data.
CWE