Unrated severityNVD Advisory· Published Feb 9, 2021· Updated Aug 4, 2024
CVE-2020-25238
CVE-2020-25238
Description
A vulnerability has been identified in PCS neo (Administration Console) (All versions < V3.1), TIA Portal (V15, V15.1 and V16). Manipulating certain files in specific folders could allow a local attacker to execute code with SYSTEM privileges. The security vulnerability could be exploited by an attacker with a valid account and limited access rights on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: < V3.1
V15, V15.1, V16+ 1 more
- (no CPE)range: V15, V15.1, V16
- (no CPE)range: V15, V15.1 and V16
- Siemens/PCS neo (Administration Console)v5Range: All versions < V3.1
Patches
Vulnerability mechanics
References
3- www.kb.cert.org/vuls/id/466044mitrethird-party-advisoryx_refsource_CERT-VN
- cert-portal.siemens.com/productcert/pdf/ssa-428051.pdfmitrex_refsource_MISC
- us-cert.cisa.gov/ics/advisories/icsa-21-040-05mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.