CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
93.6%
Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to execute arbitrary code via a long string in a parameter associated with the location URL.
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | tecnomatix_factorylink | 6.6.1 | cpe:2.3:a:siemens:tecnomatix_factorylink:6.6.1:*:*:*:*:*:*:* |
siemens | tecnomatix_factorylink | 7.5.217 | cpe:2.3:a:siemens:tecnomatix_factorylink:7.5.217:*:*:*:*:*:*:* |
siemens | tecnomatix_factorylink | 8.0.2.54 | cpe:2.3:a:siemens:tecnomatix_factorylink:8.0.2.54:*:*:*:*:*:*:* |