Security Advisory

CVE-2020-10051

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-09 18:09:58

Last updated 2024-08-04 10:50:57

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). Multiple services of the affected application are executed with SYSTEM privileges while the call path is not quoted. This could allow a local attacker to inject arbitrary commands that are execeuted instead of the legitimate service.

← Browse all CVEs View on cve.org ↗