Unrated severityNVD Advisory· Published Jan 11, 2022· Updated Aug 4, 2024

CVE-2021-45460

Description

A vulnerability has been identified in SICAM PQ Analyzer (All versions < V3.18). A service is started by an unquoted registry entry. As there are spaces in this path, attackers with write privilege to those directories might be able to plant executables that will run in place of the legitimate process. Attackers might achieve persistence on the system ("backdoors") or cause a denial of service.

Affected products

Siemens Foundation/SICAM PQ Analyzerllm-create2 versions
< V3.18+ 1 more
- (no CPE)range: < V3.18
- (no CPE)range: All versions < V3.18

Patches

Vulnerability mechanics

References

cert-portal.siemens.com/productcert/pdf/ssa-173318.pdfmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000