| |
Vulnerability CVE-2022-35868
Published: 2023-02-14
Description: |
A vulnerability has been identified in TIA Multiuser Server V14 (All versions), TIA Multiuser Server V15 (All versions < V15.1 Update 8), TIA Project-Server (All versions < V1.1), TIA Project-Server V16 (All versions), TIA Project-Server V17 (All versions). Affected applications contain an untrusted search path vulnerability that could allow an attacker to escalate privileges, when tricking a legitimate user to start the service from an attacker controlled path. |
Type:
CWE-426 (Untrusted Search Path)
References: |
https://cert-portal.siemens.com/productcert/pdf/ssa-640968.pdf
|
|
|
Copyright 2024, cxsecurity.com
|
|
|