CVE-2022-38466

Summary

A vulnerability has been identified in CoreShield One-Way Gateway (OWG) Software (All versions < V2.2). The default installation sets insecure file permissions that could allow a local attacker to escalate privileges to local administrator.

Affected Software

VendorProductVersion RangeStatus
SiemensCoreShield One-Way Gateway (OWG) SoftwareAll versions < V2.2affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References