The client application in Siemens COMOS prior to 9.1 Update 458, 9.2 prior to 9.2.0.6.37, and 10.0 prior to 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation restrictions by leveraging COMOS project access.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens comos 9.1 |
||
siemens comos 9.2 |
||
siemens comos 10.0 |