all InfoSec news
SSA-629512 V1.4 (Last Update: 2022-05-10): Local Privilege Escalation Vulnerability in TIA Portal
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The latest updates for TIA Portal fix a vulnerability that could allow a local attacker to execute arbitrary code with SYSTEM privileges.
Update: The previously provided fixes only correctly set the permissions on English Windows versions.
Siemens is preparing updates and recommends specific countermeasures for products where updates are not, or not yet available.
arbitrary code attacker code countermeasures escalation fix fixes latest local local privilege escalation permissions portal privilege privilege escalation privileges products siemens ssa system system privileges tia tia portal update updates vulnerability windows