CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-27407

A vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). The web based management of affected device does not properly validate user input, making it susceptible to command injection. This could allow an authenticated remote attacker to access the underlying operating system as the root user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.5%

CVSS Severity

CVSS v3 Score 9.9

References

https://cert-portal.siemens.com/productcert/pdf/ssa-325383.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-325383.pdf

Products affected by CVE-2023-27407

Siemens » Scalance Lpe9403 » Version: N/A

cpe:2.3:h:siemens:scalance_lpe9403:-
Siemens » Scalance Lpe9403 Firmware » Version: N/A

cpe:2.3:o:siemens:scalance_lpe9403_firmware:-
Siemens » Scalance Lpe9403 Firmware » Version: 2.0

cpe:2.3:o:siemens:scalance_lpe9403_firmware:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-27407

Products

Pricing

Contact Us