CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-50236

A vulnerability has been identified in Polarion ALM (All versions < V2404.0). The affected product is vulnerable due to weak file and folder permissions in the installation path. An attacker with local access could exploit this vulnerability to escalate privileges to NT AUTHORITY\SYSTEM.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://cert-portal.siemens.com/productcert/html/ssa-871717.html
https://cert-portal.siemens.com/productcert/html/ssa-871717.html

Products affected by CVE-2023-50236

Siemens » Polarion Alm » Version: N/A

cpe:2.3:a:siemens:polarion_alm:-
Siemens » Polarion Alm » Version: 21.0

cpe:2.3:a:siemens:polarion_alm:21.0
Siemens » Polarion Alm » Version: 2304.0

cpe:2.3:a:siemens:polarion_alm:2304.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-50236

Products

Pricing

Contact Us