CVE-2013-3927 — MEDIUM (4.6)

Vulnerability Description

Unspecified vulnerability in the client library in Siemens COMOS 9.2 before 9.2.0.6.10 and 10.0 before 10.0.3.0.4 allows local users to obtain unintended write access to the database by leveraging read access.

CVSS Score

4.6

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Siemens	Comos	9.2

References

http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_secVendor Advisory
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_secVendor Advisory

FAQ

What is CVE-2013-3927?

CVE-2013-3927 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Unspecified vulnerability in the client library in Siemens COMOS 9.2 before 9.2.0.6.10 and 10.0 before 10.0.3.0.4 allows local users to obtain unintended write access to the database by leveraging rea...

How severe is CVE-2013-3927?

CVE-2013-3927 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-3927?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Comos.