Lucene search
IcscertCVELIST:CVE-2021-43931HistoryDec 06, 2021 - 5:40 p.m.
CVE-2021-43931 Distributed Data Systems WebHM
2021-12-0617:40:45
icscert
www.cve.org
3
cve-2021-43931
distributed data systems
webhmi
authentication bypass
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.002
Percentile
58.9%
The authentication algorithm of the WebHMI portal is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
CNA Affected
[
{
"product": "WebHMI",
"vendor": "Distributed Data Systems",
"versions": [
{
"lessThan": "4.1",
"status": "affected",
"version": "4.1",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-43931
2021-12-06 18:15:08
prion
prion
Authentication flaw
2021-12-06 18:15:00
cve
cve
CVE-2021-43931
2021-12-06 18:15:08
cnvd
cnvd
Distributed Data Systems WebHmi Licensing Issue Vulnerability
2021-12-04 00:00:00
ics
ics
Distributed Data Systems WebHMI
2021-12-02 12:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.002
Percentile
58.9%
Related for CVELIST:CVE-2021-43931