Lucene search
SiemensCVELIST:CVE-2021-44524HistoryDec 14, 2021 - 12:07 p.m.
CVE-2021-44524
2021-12-1412:07:11
CWE-668
siemens
www.cve.org
3
sipass
siveillance identity
remote attacker
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal user authentication service. This could allow an unauthenticated remote attacker to trigger several actions on behalf of valid user accounts.
CNA Affected
[
{
"product": "SiPass integrated V2.76",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SiPass integrated V2.80",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SiPass integrated V2.85",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "Siveillance Identity V1.5",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "Siveillance Identity V1.6",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V1.6.284.0"
}
]
}
]Related
prion
prion
Authentication flaw
2021-12-14 12:15:00
cnvd
cnvd
SiPass integrated access control vulnerability (CNVD-2021-100377)
2021-12-15 00:00:00
cve
cve
CVE-2021-44524
2021-12-14 12:15:12
nvd
nvd
CVE-2021-44524
2021-12-14 12:15:12
ics
ics
Siemens Siveillance Identity
2021-12-16 12:00:00
Siemens SiPass Integrated
2021-12-16 12:00:00