CVE-2017-6869
First published: Tue Aug 08 2017(Updated: )
A vulnerability was discovered in Siemens ViewPort for Web Office Portal before revision number 1453 that could allow an unauthenticated remote user to upload arbitrary code and execute it with the permissions of the operating-system user running the web server by sending specially crafted network packets to port 443/TCP or port 80/TCP.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens ViewPort for Web Office Portal |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-6869?
CVE-2017-6869 is classified as a high severity vulnerability due to its potential for unauthenticated remote code execution.
How do I fix CVE-2017-6869?
To fix CVE-2017-6869, update Siemens ViewPort for Web Office Portal to the latest revision number 1453 or higher.
What systems are affected by CVE-2017-6869?
CVE-2017-6869 affects Siemens ViewPort for Web Office Portal versions prior to revision number 1453.
Can CVE-2017-6869 be exploited remotely?
Yes, CVE-2017-6869 can be exploited by an unauthenticated remote user.
What type of attack does CVE-2017-6869 enable?
CVE-2017-6869 enables an attacker to upload and execute arbitrary code on the server.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/tags
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- vendor/siemens
- canonical/siemens viewport for web office portal