Vulnerability Details CVE-2020-7583
A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privileges when executing some operations, which could allow a user with low permissions to arbitrary modify files that should be protected against writing.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.8%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2020-7583
-
cpe:2.3:a:siemens:automation_license_manager:5.0.0
-
cpe:2.3:a:siemens:automation_license_manager:5.1
-
cpe:2.3:a:siemens:automation_license_manager:5.2
-
cpe:2.3:a:siemens:automation_license_manager:5.3
-
cpe:2.3:a:siemens:automation_license_manager:5.3.4.4
-
cpe:2.3:a:siemens:automation_license_manager:6.0
-
cpe:2.3:a:siemens:automation_license_manager:6.0.1