ГлавнаяУязвимости → CVE-2024-23813
7.3высокая

CVE-2024-23813

Описание

A vulnerability has been identified in Polarion ALM (All versions < V2404.0). The REST API endpoints of doorsconnector of the affected product lacks proper authentication. An unauthenticated attacker could access the endpoints, and potentially execute code.

Затрагиваемое ПО
Siemens Polarion alm
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://cert-portal.siemens.com/productcert/html/ssa-871717.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-871717.html