Local Code Execution Vulnerability in Siemens Spectrum Power 7
CVE-2023-44120
7.8HIGH
What is CVE-2023-44120?
A vulnerability has been discovered in Spectrum Power 7, where improper sudo configuration enables the local administrative account to execute commands as the root user. This situation creates an avenue for authenticated local attackers to inject arbitrary code, potentially compromising system integrity and security. All versions earlier than V23Q4 are affected by this issue, necessitating prompt action from users to mitigate risks.
Affected Version(s)
Spectrum Power 7 All versions < V23Q4