CVE-2011-4530

Name: CVE-2011-4530
Creator: NVD / NIST
Published: 2012-01-08T20:55:01.233+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.44%

Last modified Jun 16, 2026

CVE-2011-4530 is a vulnerability of currently unknown severity. Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon crash) via long fields, as demonstrated by fields to the (1) open_session->workstation->NAME or (2) grant->VERSION function.. EPSS estimates a 4.44% chance of exploitation in the next 30 days.

Description

Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon crash) via long fields, as demonstrated by fields to the (1) open_session->workstation->NAME or (2) grant->VERSION function.

Metrics

EPSS Probability

4.44%

90.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-20

Affected Software

Vendor	Product	Versions	Update
Siemens	Automation License Manager	<= 5.1	Sp1

References

Timeline

Published: Jan 8, 2012
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2011-4530?

How severe is CVE-2011-4530?

Severity scoring for CVE-2011-4530 is pending analysis. The EPSS model estimates a 4.44% probability of exploitation in the next 30 days.

How do I fix CVE-2011-4530?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-4530?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST