1 results (0.001 seconds)
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2022-24408
https://notcve.org/view.php?id=CVE-2022-24408
08 Mar 2022 — A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root. Se ha identificado una vulnerabilidad en SINUMERIK MC (Todas las versiones anteriores a la versión V1.15 SP1), SINUMERIK ONE (Todas las versiones anteriores... • https://cert-portal.siemens.com/productcert/pdf/ssa-337210.pdf • CWE-269: Improper Privilege Management •