ГлавнаяУязвимости → CVE-2024-41793
8.6высокая

CVE-2024-41793

Описание

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web interface of affected devices provides an endpoint that allows to enable the ssh service without authentication. This could allow an unauthenticated remote attacker to enable remote access to the device via ssh.

Затрагиваемое ПО
Siemens 7kt pac1260 data manager firmwareSiemens 7kt pac1260 data manager
CVSS
Балл8.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Источники
https://cert-portal.siemens.com/productcert/html/ssa-187636.html