NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-11075

Summary	A vulnerability in the Incoming Goods Suite allows a user with unprivileged access to the underlying system (e.g. local or via SSH) a privilege escalation to the administrative level due to the usage of component vendor Docker images running with root permissions. Exploiting this misconfiguration leads to the fact that an attacker can gain administrative control. over the whole system.
Publication Date	Nov. 19, 2024, 11:15 p.m.
Registration Date	Nov. 20, 2024, 5:02 a.m.
Last Update	Nov. 19, 2024, 11:15 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://sick.com/psirt
2	https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
3	https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
4	https://www.first.org/cvss/calculator/3.1
5	https://www.sick.com/.well-known/csaf/white/2024/sca-2024-0005.pdf
6	https://www.sick.com/.well-known/csaf/white/2024/sca-2024-0005.json

Common Vulnerabilities List