CVE-2013-4943

CWE-2643 documents3 sources
Severity
7.2HIGH
EPSS
0.0%
top 86.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Siemens Comos
Timeline
PublishedAug 9
Latest updateMay 17

Description

The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrictions by leveraging COMOS project access.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDsiemens/comos10.0, 9.1, 9.2+2

🔴Vulnerability Details

2
GHSA
GHSA-gq85-v9q8-hp6f: The client application in Siemens COMOS before 92022-05-17
CVEList
CVE-2013-4943: The client application in Siemens COMOS before 92013-08-09
CVE-2013-4943 (HIGH CVSS 7.2) | The client application in Siemens C | cvebase.io