CVE-2017-6869
N/A
N/A
Summary
A vulnerability was discovered in Siemens ViewPort for Web Office Portal before revision number 1453 that could allow an unauthenticated remote user to upload arbitrary code and execute it with the permissions of the operating-system user running the web server by sending specially crafted network packets to port 443/TCP or port 80/TCP.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ViewPort for Web Office Portal before revision number 1453 | ViewPort for Web Office Portal before revision number 1453 | affected |
Weaknesses
- CWE-287: CWE-287: Improper Authentication
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/99343
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-545214.pdf
References
- http://www.securityfocus.com/bid/99343
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-545214.pdf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.