Vulnerabilities > CVE-2024-22042 - Unspecified vulnerability in Siemens Unicam FX Firmware

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
siemens

Summary

A vulnerability has been identified in Unicam FX (All versions). The windows installer agent used in affected product contains incorrect use of privileged APIs that trigger the Windows Console Host (conhost.exe) as a child process with SYSTEM privileges. This could be exploited by an attacker to perform a local privilege escalation attack.

Vulnerable Configurations

Part Description Count
OS
Siemens
1
Hardware
Siemens
1