CVE-2024-32008

High CVSS: 8.5

A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local user to gain code execution as administrative application user.

Vendor

Product

CWE

CWE-648

Yayın Tarihi

2025-11-11 21:15:35

Güncelleme

2025-11-12 16:19:12

Source Identifier

productcert@siemens.com

KEV Date Added

Kategoriler

CWE-648 HIGH 2025

Referanslar

https://cert-portal.siemens.com/productcert/html/ssa-339694.html