Unrated severityNVD Advisory· Published Dec 12, 2019· Updated Nov 15, 2024

CVE-2019-18338

Description

A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) contains a directory traversal vulnerability in its XML-based communication protocol as provided by default on ports 5444/tcp and 5440/tcp.

An authenticated remote attacker with network access to the CCS server could exploit this vulnerability to list arbitrary directories or read files outside of the CCS application context.

Affected products

Intel/Server Controlllm-fuzzy
Range: < V1.5.0
Siemens Foundation/Control Center Server (CCS)cpe-rescue
Range: All versions < V1.5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/pdf/ssa-761617.pdfmitrex_refsource_MISC
cert-portal.siemens.com/productcert/pdf/ssa-761844.pdfmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000