A vulnerability has been identified in Desigo CC (V4.x), Desigo CC (V3.x), Desigo CC Compact (V4.x), Desigo CC Compact (V3.x). Affected applications are delivered with a 3rd party component (BIRT) that contains a remote code execution vulnerability if the Advanced Reporting Engine is enabled. The vulnerability could allow a remote unauthenticated malicious user to execute arbitrary commands on the server with SYSTEM privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens desigo consumption control 3.0 |
||
siemens desigo consumption control 4.0 |
||
siemens desigo consumption control compact 3.0 |
||
siemens desigo consumption control compact 4.0 |