CVE-2019-18338

by Fred · 12/12/2019

A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) contains a directory traversal vulnerability in its XML-based communication protocol as provided by default on ports 5444/tcp and 5440/tcp. An authenticated remote attacker with network access to the CCS server could exploit this vulnerability to list arbitrary directories or read files outside of the CCS application context. Date published : 2019-12-12 https://cert-portal.siemens.com/productcert/pdf/ssa-761844.pdf

https://cert-portal.siemens.com/productcert/pdf/ssa-761617.pdf

CVE-2019-18338

Similar

Recent Posts

Categories

CVE-2019-18338

Share this:

Similar

Recent Posts

Categories

Tags