Vulnerability CVE-2023-38533
Published: 2024-06-11

Description:
A vulnerability has been identified in TIA Administrator (All versions < V3 SP2). The affected component creates temporary download files in a directory with insecure permissions. This could allow any authenticated attacker on Windows to disrupt the update process.

Type:

CWE-379

 (Creation of Temporary File in Directory with Incorrect Permissions)

 References:
https://cert-portal.siemens.com/productcert/html/ssa-319319.html
Copyright 2024, cxsecurity.com

 

Back to Top