cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-47783,https://securityvulnerability.io/vulnerability/CVE-2024-47783,Local Attacker Could Gain Elevated Privileges via Incorrect File Permissions,"A vulnerability exists in SIPORT across all versions prior to V3.4.0, where improper assignment of file permissions to installation directories allows local attackers possessing unprivileged accounts to potentially modify or override service executables. This flaw exposes the system to the risk of privilege escalation, making it imperative for users to upgrade to version 3.4.0 or later to mitigate potential security threats.",Siemens,Siport,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-12T12:49:47.188Z,0
CVE-2020-7591,https://securityvulnerability.io/vulnerability/CVE-2020-7591,User Impersonation Vulnerability in SIPORT MP by Siemens,"A user impersonation vulnerability exists in SIPORT MP, where versions earlier than 3.2.1 could allow an authenticated attacker to impersonate other users. This risk is particularly prominent if the device's single sign-on feature is enabled, allowing attackers to execute potentially administrative actions as if they were legitimate users.",Siemens,Siport Mp,8.8,HIGH,0.0013299999991431832,false,,false,false,false,,,false,false,,2020-10-15T18:45:35.000Z,0
CVE-2019-19277,https://securityvulnerability.io/vulnerability/CVE-2019-19277,,"A vulnerability has been identified in SIPORT MP (All versions < 3.1.4). Vulnerable versions of the device allow the creation of special accounts (""service users"") with administrative privileges that could enable a remote authenticated attacker to perform actions that are not visible to other users of the system, such as granting persons access to a secured area.",Siemens,Siport Mp,6.5,MEDIUM,0.003010000102221966,false,,false,false,false,,,false,false,,2020-03-10T19:16:17.000Z,0