Vulnerability CVE-2023-26293


Published: 2023-04-11

Description:
A vulnerability has been identified in TIA Portal V15 (All versions), TIA Portal V16 (All versions), TIA Portal V17 (All versions), TIA Portal V18 (All versions < V18 Update 1). Affected products contain a path traversal vulnerability that could allow the creation or overwrite of arbitrary files in the engineering system. If the user is tricked to open a malicious PC system configuration file, an attacker could exploit this vulnerability to achieve arbitrary code execution.

Type:

CWE-20

(Improper Input Validation)

 References:
https://cert-portal.siemens.com/productcert/pdf/ssa-116924.pdf

Copyright 2026, cxsecurity.com

 

Back to Top