What the vulnerability does

01Description

A vulnerability has been identified in SENTRON powermanager V3 (All versions). The affected application assigns improper access rights to a specific folder containing configuration files. This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.

Key dates

02Disclosure timeline

November 9, 2021 CVE published
August 4, 2024 Record updated