cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-25659,https://securityvulnerability.io/vulnerability/CVE-2021-25659,Denial-of-Service Vulnerability in Siemens Automation License Manager,"A vulnerability exists within the Siemens Automation License Manager that allows an attacker to exploit it by sending specially crafted packets to port 4410/tcp. This can lead to significant memory consumption, resulting in a denial-of-service condition. As a consequence, legitimate users may be unable to access the system, hindering operational functionality.",Siemens,"Automation License Manager 5,Automation License Manager 6",7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2021-08-10T10:35:25.000Z,0
CVE-2020-7583,https://securityvulnerability.io/vulnerability/CVE-2020-7583,Privilege Escalation in Automation License Manager by Siemens,"A vulnerability has been identified in the Automation License Manager that allows unauthorized users to escalate their privileges. This issue arises from the application's failure to properly validate user permissions during certain operations. As a result, users with insufficient privileges may gain the capability to modify critical files that are meant to be protected. This can lead to unauthorized access and potential exploitation of the system, emphasizing the need for immediate attention and patching.",Siemens,"Automation License Manager 5,Automation License Manager 6",7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-08-14T15:24:06.000Z,0
CVE-2018-11455,https://securityvulnerability.io/vulnerability/CVE-2018-11455,,"A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote attacker to move arbitrary files, which can result in code execution, compromising confidentiality, integrity and availability of the system. Successful exploitation requires a network connection to the affected device. The attacker does not need privileges or special conditions of the system, but user interaction is required.",Siemens,"Automation License Manager 5, Automation License Manager 6",8.8,HIGH,0.01841999962925911,false,,false,false,false,,,false,false,,2018-08-07T15:00:00.000Z,0