Lucene search
China National Vulnerability DatabaseCNVD-2021-89433HistoryNov 11, 2021 - 12:00 a.m.
Siemens Climatix POL909 (AWM) Information Disclosure Vulnerability
2021-11-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
siemens climatix pol909
information disclosure
vulnerability
siemens germany
web server
tls encryption
remote attacker
sensitive data.
EPSS
0.001
Percentile
51.2%
Siemens Climatix Pol909 is an intelligent network module from Siemens, Germany. security vulnerability exists in versions prior to Siemens Climatix POL909 (AWM module) V11.34, which stems from the fact that the web server of the affected device does not use TLS encryption when transmitting data. An unauthenticated, remote attacker could read sensitive data, such as administrator credentials, or modify data in transit.
Related
prion
prion
Design/Logic Flaw
2021-11-09 12:15:00
cvelist
cvelist
CVE-2021-40366
2021-11-09 11:32:07
nvd
nvd
CVE-2021-40366
2021-11-09 12:15:10
ics
ics
Siemens Climatix POL909 (Update A)
2022-03-10 12:00:00
cve
cve
CVE-2021-40366
2021-11-09 12:15:10