CVE-2020-10056

CVE-2020-10056

Vendor Siemens Ag
Product License Management Utility (LMU)
Weakness CWE-250
Published September 9, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in License Management Utility (LMU) (All versions < V2.4). The lmgrd service of the affected application is executed with local SYSTEM privileges on the server while its configuration can be modified by local users. The vulnerability could allow a local authenticated attacker to execute arbitrary commands on the server with local SYSTEM privileges.

Key dates

02Disclosure timeline

September 9, 2020 CVE published
August 4, 2024 Record updated