NVD

Id
40427  
Name
CVE-2013-4943  
Description
The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrictions by leveraging COMOS project access.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2013-08-09  
Modified Date
2013-08-13  
Seq
2013-4943  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
205281 40427 CVE-2013-4943 http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-970879.pdf  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22116 JVNDB-2013-003691 Siemens COMOS のクライアントアプリケーションにおける権限を取得される脆弱性 Siemens COMOS のクライアントアプリケーションには、権限を取得され、データベース操作の制限を意図的に回避される脆弱性が存在します。 CVE-2013-4943 64885 CVE-2013-4943 40427 7.2 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003691.html 2013-08-09 2013-08-19 View