QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-11455

Back to search

CVE-2018-11455

Published: Aug 7, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote attacker to move arbitrary files, which can result in code execution, compromising confidentiality, integrity and availability of the system. Successful exploitation requires a network connection to the affected device. The attacker does not need privileges or special conditions of the system, but user interaction is required.

VendorProductVersions

Siemens AG

Automation License Manager 5, Automation License Manager 6

affected
Automation License Manager 5 : All versions < 5.3.4.4
affected
Automation License Manager 6 : All versions < 6.0.1

Weaknesses (CWE)

CWE-22

References

105114
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2018-11455 - Security Vulnerability | QwikSec