N/A

A vulnerability was discovered in Siemens XHQ server 4 and 5 (4 before V4.7.1.3 and 5 before V5.0.0.2) that could allow an authenticated low-privileged remote user to gain read access to data in the XHQ solution exceeding his configured permission level.

N/A

访问控制不恰当

Siemens XHQ 4和5 安全漏洞

Siemens XHQ 4是德国西门子（Siemens）公司的一套工业生产运营指挥平台。该平台能够收集工厂运营数据，并对数据进行分析、决策。Siemens XHQ 5是它的下一代产品。 Siemens XHQ 4 V4.7.1.3之前的版本和XHQ 5 V5.0.0.2之前的版本中存在安全漏洞。远程攻击者可利用该漏洞获取数据的读权限。

N/A

N/A