CVE-2024-33499

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 14/05/2024 Updated: 14/05/2024

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA30) (All versions < V3.0.1.1). The affected application assigns incorrect permissions to a user management component. This could allow a privileged malicious user to escalate their privileges from the Administrators group to the Systemadministrator group.

Critical Infrastructure Sectors: Critical Manufacturing, Transportation Systems

CWE-732 https://cert-portal.siemens.com/productcert/html/ssa-093430.html https://nvd.nist.gov https://www.cisa.gov/news-events/ics-advisories/icsa-24-137-07

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-33499

Vulnerability Summary

ICS Advisories

References

Vulmon Search

About

Products

Connect