Vulnerability Details CVE-2024-47553
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0). The affected application does not properly validate user input to the ```ssmctl-client``` command.
This could allow an authenticated, lowly privileged remote attacker to execute arbitrary code with root privileges on the underlying OS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 85.0%
CVSS Severity
CVSS v3 Score 9.9
Products affected by CVE-2024-47553
-
cpe:2.3:a:siemens:sinec_security_monitor:*