Siemens: >> Sinumerik Mc Security Vulnerabilities
Affected devices improperly handle specially crafted packets sent to port 102/tcp.
This could allow an attacker to create a denial of service condition. A restart is needed to restore
normal operations.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-12-12
A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-03-08