- Description
- Unspecified vulnerability in the client library in Siemens COMOS 9.2 before 9.2.0.6.10 and 10.0 before 10.0.3.0.4 allows local users to obtain unintended write access to the database by leveraging read access.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:siemens:comos:9.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F3343B0-D106-488F-859B-855A1A848A3E"
},
{
"criteria": "cpe:2.3:a:siemens:comos:10.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACCFB2A5-EFEC-4AD0-9A9F-67106F1FFF09"
}
],
"operator": "OR"
}
]
}
]