CVE-2022-24408

A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root.
References
Link Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-337210.pdf Mitigation Vendor Advisory
Configurations

Configuration 1


Information

Published : 2022-03-08 12:15

Updated : 2022-03-11 06:50


NVD link : CVE-2022-24408

Mitre link : CVE-2022-24408

Products Affected
No products.
CWE