Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-46601

A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the database directly to access information that the user should not have access to.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.2%
CVSS Severity
CVSS v3 Score 9.6
Products affected by CVE-2023-46601
  • Siemens » Comos » Version: N/A
    cpe:2.3:a:siemens:comos:-
  • Siemens » Comos » Version: 10.0
    cpe:2.3:a:siemens:comos:10.0
  • Siemens » Comos » Version: 10.0.3.0.18
    cpe:2.3:a:siemens:comos:10.0.3.0.18
  • Siemens » Comos » Version: 10.0.3.0.4
    cpe:2.3:a:siemens:comos:10.0.3.0.4
  • Siemens » Comos » Version: 10.0.3.1.40
    cpe:2.3:a:siemens:comos:10.0.3.1.40
  • Siemens » Comos » Version: 10.1
    cpe:2.3:a:siemens:comos:10.1
  • Siemens » Comos » Version: 10.1.0.0.2
    cpe:2.3:a:siemens:comos:10.1.0.0.2
  • Siemens » Comos » Version: 10.2
    cpe:2.3:a:siemens:comos:10.2
  • Siemens » Comos » Version: 10.3
    cpe:2.3:a:siemens:comos:10.3
  • Siemens » Comos » Version: 10.3.3.2.14
    cpe:2.3:a:siemens:comos:10.3.3.2.14
  • Siemens » Comos » Version: 10.3.3.3
    cpe:2.3:a:siemens:comos:10.3.3.3
  • Siemens » Comos » Version: 10.4
    cpe:2.3:a:siemens:comos:10.4
  • Siemens » Comos » Version: 10.4.1
    cpe:2.3:a:siemens:comos:10.4.1
  • Siemens » Comos » Version: 10.4.4
    cpe:2.3:a:siemens:comos:10.4.4
  • Siemens » Comos » Version: 9.1
    cpe:2.3:a:siemens:comos:9.1
  • Siemens » Comos » Version: 9.2
    cpe:2.3:a:siemens:comos:9.2
  • Siemens » Comos » Version: 9.2.0.6.10
    cpe:2.3:a:siemens:comos:9.2.0.6.10
  • Siemens » Comos » Version: 9.2.0.8.1
    cpe:2.3:a:siemens:comos:9.2.0.8.1
  • Siemens » Comos » Version: 9.2.6.36
    cpe:2.3:a:siemens:comos:9.2.6.36


Products
Pricing
Contact Us

Shodan ® - All rights reserved