CVE-2017-6866

CVE-2017-6866

Vendor N/A
Product XHQ 4 (All versions before V4.7.1.3), XHQ 5 (All versions before V5.0.0.2)
Weakness CWE-284
Published August 7, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability was discovered in Siemens XHQ server 4 and 5 (4 before V4.7.1.3 and 5 before V5.0.0.2) that could allow an authenticated low-privileged remote user to gain read access to data in the XHQ solution exceeding his configured permission level.

Key dates

02Disclosure timeline

August 7, 2017 CVE published
August 5, 2024 Record updated