Lucene search
HistoryAug 08, 2023 - 10:15 a.m.
CVE-2021-41544
siemens
software center
dll hijacking
vulnerability
local attacker
code execution
elevated privileges
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
A vulnerability has been identified in Siemens Software Center (All versions < V3.0). A DLL Hijacking vulnerability could allow a local attacker to execute code with elevated privileges by placing a malicious DLL in one of the directories on the DLL search path.
Affected configurations
Node
siemenssoftware_centerRange<3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | software_center | * | cpe:2.3:a:siemens:software_center:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2021-41544
2023-08-08 09:20:08
prion
prion
Path traversal
2023-08-08 10:15:00
cve
cve
CVE-2021-41544
2023-08-08 10:15:12
ics
ics
βSiemens Software Center
2023-08-10 12:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2021-41544