← Volver a CVEs
CVE-2024-32011
HIGH8.8
Descripcion
A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). The affected application is vulnerable to run arbitrary commands via the user interface. This user interface can be used via the network and allows the execution of commands as administrative application user.
Detalles CVE
Puntuacion CVSS v3.18.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado11/11/2025
Ultima modificacion11/12/2025
Fuentenvd
Avistamientos honeypot0
Debilidades (CWE)
CWE-829
Referencias
https://cert-portal.siemens.com/productcert/html/ssa-339694.html(productcert@siemens.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.