Security Advisory

CVE-2023-38557

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-14 10:39:28

Last updated 2025-02-27 20:50:26

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q3). The affected product assigns improper access rights to the update script. This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.

← Browse all CVEs View on cve.org ↗