Vulnerabilities (CVE)

Filtered by vendor Siemens Subscribe

Filtered by product Sicam Toolbox Ii

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-38641	1 Siemens	1 Sicam Toolbox Ii	2023-08-15	N/A	7.8 HIGH
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected application's database service is executed as `NT AUTHORITY\SYSTEM`. This could allow a local attacker to execute operating system commands with elevated privileges.
CVE-2022-39062	1 Siemens	1 Sicam Toolbox Ii	2023-08-15	N/A	7.8 HIGH
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). Affected applications do not properly set permissions for product folders. This could allow an authenticated attacker with low privileges to replace DLLs and conduct a privilege escalation.