cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-43514,https://securityvulnerability.io/vulnerability/CVE-2022-43514,Directory Traversal Vulnerability in Siemens Automation License Manager and TeleControl Server,"A directory traversal vulnerability exists in various versions of Siemens Automation License Manager and TeleControl Server. This flaw allows an unauthenticated remote attacker to manipulate file and folder structures beyond the designated root directory. By exploiting this vulnerability, an attacker could execute unauthorized file operations, potentially leading to serious security breaches. When combined with another vulnerability, there is a risk of remote code execution, endangering the integrity of the overall system.",Siemens,"Automation License Manager V5,Automation License Manager V6,Telecontrol Server Basic V3",7.7,HIGH,0.014510000124573708,false,,false,false,false,,false,false,2023-01-10T11:39:39.909Z,0
CVE-2022-43513,https://securityvulnerability.io/vulnerability/CVE-2022-43513,Unauthorized File Manipulation in Siemens Automation License Manager and TeleControl Server,"A vulnerability exists in Siemens Automation License Manager and TeleControl Server that permits an unauthenticated remote attacker to manipulate license files. The affected versions allow users to rename files using their input without proper authentication checks. This flaw can lead to unauthorized alterations performed at the system level, potentially compromising system integrity and leading to further exploitation.",Siemens,"Automation License Manager V5,Automation License Manager V6,Telecontrol Server Basic V3",8.2,HIGH,0.002099999925121665,false,,false,false,false,,false,false,2023-01-10T11:39:38.879Z,0