cbcvebase.
CVE-2023-38640
published 2023-10-10

CVE-2023-38640: A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.22). The affected application is installed with specific files and folders…

PriorityP418medium4.4CVSS 3.1
AVLACLPRLUINSUCLILAN
EPSS
0.15%
4.5th percentile
A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.22). The affected application is installed with specific files and folders with insecure permissions. This could allow an authenticated local attacker to read and modify configuration data in the context of the application process.

Affected

2 ranges
VendorProductVersion rangeFixed in
siemenssicam_pas_pqs>= 8.00 < 8.228.22
siemenssicam_pas_pqs>= V8.00 < V8.22V8.22
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.