cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-44087,https://securityvulnerability.io/vulnerability/CVE-2024-44087,Automation License Manager Vulnerability Could Lead to Remote Code Execution,"A vulnerability has been identified in Siemens Automation License Manager that affects versions V5, V6.0, and V6.2 (prior to V6.2 Upd3). The issue arises from the application's improper validation of fields in incoming network packets transmitted on port 4410/tcp. As a result, an unauthenticated remote attacker could exploit this vulnerability to trigger an integer overflow, leading to a crash of the affected application. This denial of service may disrupt operations, preventing legitimate users from accessing subsequent products that depend on the license verification functions of Automation License Manager.",Siemens,"Automation License Manager V5,Automation License Manager V6.0,Automation License Manager V6.2",8.6,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-09-10T09:36:52.341Z,0
CVE-2022-43514,https://securityvulnerability.io/vulnerability/CVE-2022-43514,Directory Traversal Vulnerability in Siemens Automation License Manager and TeleControl Server,"A directory traversal vulnerability exists in various versions of Siemens Automation License Manager and TeleControl Server. This flaw allows an unauthenticated remote attacker to manipulate file and folder structures beyond the designated root directory. By exploiting this vulnerability, an attacker could execute unauthorized file operations, potentially leading to serious security breaches. When combined with another vulnerability, there is a risk of remote code execution, endangering the integrity of the overall system.",Siemens,"Automation License Manager V5,Automation License Manager V6,Telecontrol Server Basic V3",7.7,HIGH,0.014510000124573708,false,,false,false,false,,false,false,2023-01-10T11:39:39.909Z,0
CVE-2022-43513,https://securityvulnerability.io/vulnerability/CVE-2022-43513,Unauthorized File Manipulation in Siemens Automation License Manager and TeleControl Server,"A vulnerability exists in Siemens Automation License Manager and TeleControl Server that permits an unauthenticated remote attacker to manipulate license files. The affected versions allow users to rename files using their input without proper authentication checks. This flaw can lead to unauthorized alterations performed at the system level, potentially compromising system integrity and leading to further exploitation.",Siemens,"Automation License Manager V5,Automation License Manager V6,Telecontrol Server Basic V3",8.2,HIGH,0.002099999925121665,false,,false,false,false,,false,false,2023-01-10T11:39:38.879Z,0