SSA-388646 (Last Update: 2020-08-11): Local Privilege Escalation in Automation License Manager

Published

2020-08-11 00:00:00 UTC

Summary

The latest update for Automation License Manager (ALM) fixes a vulnerability that could allow local users to locally escalate privileges and modify files that should be protected against writing.

Siemens has released an update for ALM 6 and recommends that customers update to the latest version. Siemens recommends specific countermeasures for ALM 5 as currently there are no fixes available.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-388646.pdf