Primary

Context

Siemens License Server Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in Siemens License Server (SLS) versions prior to 4.3. The issue arises because the application improperly validates executable files in the application directory. This flaw could enable an attacker to execute arbitrary code with administrative rights by placing a malicious executable in the same folder.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a low-privileged user to execute arbitrary code with administrative privileges.

Remediation

Users are advised to update Siemens License Server to version 4.3 or later. For more information, visit the Siemens Support Center.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens License Server Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating