CVE-2013-6840

Loading...

General

Score:6.9/10.0
Severity:Medium
Category:Access Control Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Medium
Authentication:None

Published on 10/12/13 - Updated on 12/12/13

Description

Siemens COMOS before 9.2.0.8.1, 10.0 before 10.0.3.1.40, and 10.1 before 10.1.0.0.2 allows local users to gain database privileges via unspecified vectors.

Category: Access Control Error

CWE-264 (Permissions, Privileges, and Access Control)
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Security Notices

US National Vulnerability DatabaseCVE-2013-6840
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2013-AVI-659, CERTA-2013-AVI-676

Exploits

SecurityFocusBID-64153

Relative technologies

VendorProduct
siemenscomos

Share this vulnerability with:

Twitter Facebook LinkedIn Mail