all InfoSec news
SSA-552702 V1.0: Privilege Escalation Vulnerability in the Web Interface of SCALANCE and RUGGEDCOM Products
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The products listed below do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products where updates are not, or not yet available.
authorize change change password escalation function interface latest low password privilege privileged privilege escalation privileges products ruggedcom siemens ssa the web update updates vulnerability web web interface