A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in SMB shares. This could allow an attacker to access files that the user should not have access to.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-137900.pdf | Vendor Advisory |
Configurations
History
18 Nov 2023, 00:02
Type | Values Removed | Values Added |
---|---|---|
References | () https://cert-portal.siemens.com/productcert/pdf/ssa-137900.pdf - Vendor Advisory | |
First Time |
Siemens comos
Siemens |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CPE | cpe:2.3:a:siemens:comos:*:*:*:*:*:*:*:* |
14 Nov 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-14 11:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-43505
Mitre link : CVE-2023-43505
CVE.ORG link : CVE-2023-43505
JSON object : View
Products Affected
siemens
- comos
CWE
CWE-284
Improper Access Control