Vulnerabilities (CVE)

Filtered by vendor Siemens Subscribe
Filtered by product Simatic Rtls Locating Manager
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10054 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 2.1 LOW 5.5 MEDIUM
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application does not properly handle the import of large configuration files. A local attacker could import a specially crafted file which could lead to a denial-of-service condition of the application service.
CVE-2020-10053 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 2.1 LOW 5.5 MEDIUM
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as database credentials in configuration files. A local attacker with access to the configuration files could use this information to launch further attacks.
CVE-2020-10052 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 2.1 LOW 5.5 MEDIUM
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as usernames and passwords in log files. A local attacker with access to the log files could use this information to launch further attacks.
CVE-2020-10051 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 7.2 HIGH 7.8 HIGH
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). Multiple services of the affected application are executed with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to inject arbitrary commands that are execeuted instead of the legitimate service.
CVE-2020-10050 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 7.2 HIGH 7.8 HIGH
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The directory of service executables of the affected application could allow a local attacker to include arbitrary commands that are executed with SYSTEM privileges when the system restarts.
CVE-2020-10049 1 Siemens 1 Simatic Rtls Locating Manager 2024-11-21 4.4 MEDIUM 7.3 HIGH
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The start-stop scripts for the services of the affected application could allow a local attacker to include arbitrary commands that are executed when services are started or stopped interactively by system administrators.