← Back to home
SIEMENS-SSA-417547  ·  Published 2024-08-13  ·  View on Siemens ProductCERT ↗

SSA-417547 V1.0: Multiple Vulnerabilities in INTRALOG WMS Before V4

CVSS N/A MEDIUM

Risk Summary

<p>INTRALOG WMS before V4 is affected by vulnerabilities in the SQL Client-Server communication and in the .NET framework. Successful exploitation could allow an unauthenticated attacker located in the INTRALOG WMS network to decrypt and modify client-server communication, or potentially execute arbitrary code on the application servers.</p> <p>Siemens has released a new version for INTRALOG WMS and recommends to update to the latest version. Please contact your personal INTRALOG WMS contact person referencing the Siemens Security Advisory ID (SSA-417547) and the installed INTRALOG WMS Versions to initiate the dialog with Siemens to get the vulnerabilities fixed.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-417547 V1.0: Multiple Vulnerabilities in INTRALOG WMS Before V4 See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more