Shodan
Vulnerabilities
Vulnerable Software
Siemens:  >> Simatic Rtls Locating Manager  >> 2.10.2  Security Vulnerabilities
CVE-2025-40746
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.2). Affected products do not properly validate input for a backup script. This could allow an authenticated remote attacker with high privileges in the application to execute arbitrary code with 'NT Authority/SYSTEM' privileges.
CVSS Score
9.1
EPSS Score
0.002
Published
2025-08-12
CVE-2025-40751
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.3). Affected SIMATIC RTLS Locating Manager Report Clients do not properly protect credentials that are used to authenticate to the server. This could allow an authenticated local attacker to extract the credentials and use them to escalate their access rights from the Manager to the Systemadministrator role.
CVSS Score
6.3
EPSS Score
0.0
Published
2025-08-12
CVE-2025-30034
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.3). Affected devices do not properly validate input sent to its listening port on the local loopback interface. This could allow an unauthenticated local attacker to cause a denial of service condition.
CVSS Score
6.2
EPSS Score
0.0
Published
2025-08-12
CVE-2020-10052
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as usernames and passwords in log files. A local attacker with access to the log files could use this information to launch further attacks.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-09
CVE-2020-10053
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application writes sensitive data, such as database credentials in configuration files. A local attacker with access to the configuration files could use this information to launch further attacks.
CVSS Score
5.5
EPSS Score
0.0
Published
2021-11-09
CVE-2020-10054
A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). The affected application does not properly handle the import of large configuration files. A local attacker could import a specially crafted file which could lead to a denial-of-service condition of the application service.
CVSS Score
5.5
EPSS Score
0.0
Published
2021-11-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved