Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrictions by leveraging COMOS project access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Siemens COMOS 客户端库安全漏洞
Vulnerability Description
Siemens COMOS是德国西门子(Siemens)公司的一套工厂工程设计软件。该软件可在工厂及机械设备资产的整个生命周期内对其进行全盘设计和管理。 Siemens COMOS中的客户端应用程序中存在安全漏洞。本地攻击者可通过COMOS的访问利用该漏洞获得权限,绕过既定的数据库操作限制。以下版本受到影响:9.1 Update 458之前的版本,9.2.0.6.37之前的9.2版本,10.0.3.0.19之前的10.0版本。
CVSS Information
N/A
Vulnerability Type
N/A