| CVE编号 | CVE-2025-27397 |
|---|---|
| 发布日期 | 2025-03-11T09:48:28.712Z |
| 更新日期 | 2025-03-11T13:35:39.175Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | Siemens |
| 受影响的产品 | SCALANCE LPE9403 |
| 描述 | A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly limit user controlled paths to which logs are written and from where they are read. This could allow an authenticated highly-privileged remote attacker to read and write arbitrary files in the filesystem, if and only if the malicious path ends with 'log' . |
参考链接:
