CVE-2021-33729

Description

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker that is able to import firmware containers to an affected system could execute arbitrary commands in the local database.

Risk Information

Base Score

8.8

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.8

Associated Vulnerability

Vulnerability	OS Platform
Multiple Vulnerabilities are affected in Siemens SINEC NMS *	Windows
Multiple Vulnerabilities are affected in Siemens SINEC NMS 1.0	Windows
Multiple Vulnerabilities are affected in SINEC NMS *	Windows
Multiple Vulnerabilities are affected in SINEC NMS 1.0	Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234