CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-10049

A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). The start-stop scripts for the services of the affected application could allow a local attacker to include arbitrary commands that are executed when services are started or stopped interactively by system administrators.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.4%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 4.4

References

https://cert-portal.siemens.com/productcert/pdf/ssa-251935.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-251935.pdf

Products affected by CVE-2020-10049

Siemens » Simatic Rtls Locating Manager » Version: 2.10

cpe:2.3:a:siemens:simatic_rtls_locating_manager:2.10
Siemens » Simatic Rtls Locating Manager » Version: 2.9.3

cpe:2.3:a:siemens:simatic_rtls_locating_manager:2.9.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-10049

Products

Pricing

Contact Us