N/A

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA30) (All versions < V3.0.1.1). The affected application assigns incorrect permissions to a user management component. This could allow a privileged attacker to escalate their privileges from the Administrators group to the Systemadministrator group.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

关键资源的不正确权限授予

Siemens 多款产品 安全漏洞

Siemens SIMATIC RTLS是德国西门子（Siemens）公司的一款定位管理器 Siemens 多款产品存在安全漏洞，该漏洞源于受影响的应用程序向用户管理组件分配了错误的权限。以下产品及版本受到影响：SIMATIC RTLS Locating Manager (6GT2780-0DA00)，SIMATIC RTLS Locating Manager (6GT2780-0DA10)，SIMATIC RTLS Locating Manager (6GT2780-0DA20)，SIMATIC RTL

N/A

N/A