CVE-2024-47562 in SINEC Security Monitorinfo

Zusammenfassung

von MITRE • 08.10.2024

A vulnerability has been identified in SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly neutralize special elements in user input to the ```ssmctl-client``` command. This could allow an authenticated, lowly privileged local attacker to execute privileged commands in the underlying OS.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Siemens

Reservieren

27.09.2024

Veröffentlichung

08.10.2024

Moderieren

akzeptiert

Eintrag

VDB-279614

CPE

bereit

CWE

CWE-77 (bestätigt)

CVSS

8.8 (NVD)

EPSS

0.00112

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-47562
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-47562
CVE Details	https://www.cvedetails.com/cve/CVE-2024-47562/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!