Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root.
CVSS Information
N/A
Vulnerability Type
特权管理不恰当
Vulnerability Title
Siemens SINUMERIK 安全漏洞
Vulnerability Description
Siemens SINUMERIK是德国西门子(Siemens)公司的一套控制系统。适用于所有生产领域。 Siemens SINUMERIK MC 1.15 SP1之前版本以及SINUMERIK ONE 6.15 SP1之前版本存在安全漏洞,该漏洞源于受影响设备上的sc SUID二进制文件提供了几个用于执行系统命令或修改系统文件的命令,允许本地攻击者利用该漏洞将他们的特权升级到root。
CVSS Information
N/A
Vulnerability Type
N/A