← back
CVE-2017-6869

CVE-2017-6869

EPSS 3.0%CWE-287
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 3.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Aug 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability was discovered in Siemens ViewPort for Web Office Portal before revision number 1453 that could allow an unauthenticated remote user to upload arbitrary code and execute it with the permissions of the operating-system user running the web server by sending specially crafted network packets to port 443/TCP or port 80/TCP.
Affected products
n/a · ViewPort for Web Office Portal before revision number 1453

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-545214.pdfhttp://www.securityfocus.com/bid/99343