CVE-2020-10054

Name of the Vulnerable Software and Affected Versions SIMATIC RTLS Locating Manager versions prior to V2.12

Description A issue has been identified where the application does not properly handle the import of large configuration files. This could allow a local attacker to import a specially crafted file, potentially leading to a denial-of-service condition of the application service.

Recommendations For versions prior to V2.12, update to version V2.12 or later to resolve the issue. As a temporary workaround, consider restricting the import of large configuration files to minimize the risk of exploitation.