CVE-2021-27392

🗓️ 22 Apr 2021 20:42:21Reported by siemensType

A vulnerability in Siveillance Video Open Network Bridge allows unauthorized access to stored credentials

Reporter	Title	Published	Views	Family All 8
CNNVD	Siemens Open Network Bridge 信任管理问题漏洞	13 Apr 202100:00	–	cnnvd
CNVD	Siemens Siveillance Video Open Network Bridge (ONVIF) User Credentials Disclosure Vulnerability	13 Apr 202100:00	–	cnvd
Cvelist	CVE-2021-27392	22 Apr 202120:42	–	cvelist
EUVD	EUVD-2021-14147	7 Oct 202500:30	–	euvd
ICS	Siemens and Milestone Siveillance Video Open Network Bridge	13 Apr 202100:00	–	ics
NVD	CVE-2021-27392	22 Apr 202121:15	–	nvd
Prion	Hardcoded credentials	22 Apr 202121:15	–	prion
RedhatCVE	CVE-2021-27392	9 Jan 202611:28	–	redhatcve

NVD

Node

siemens siveillance_video_open_network_bridgeMatch2018r2

siemens siveillance_video_open_network_bridgeMatch2018r3

siemens siveillance_video_open_network_bridgeMatch2019r1

siemens siveillance_video_open_network_bridgeMatch2019r2

siemens siveillance_video_open_network_bridgeMatch2019r3

siemens siveillance_video_open_network_bridgeMatch2020r1

siemens siveillance_video_open_network_bridgeMatch2020r2

siemens siveillance_video_open_network_bridgeMatch2020r3

[
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2020 R3"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2020 R2"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2020 R1"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2019 R3"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2019 R2"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2019 R1"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2018 R3"
      }
    ]
  },
  {
    "product": "Siveillance Video Open Network Bridge",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "2018 R2"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-853866.pdf

21 Nov 2024 05:57Current

8.5High risk

Vulners AI Score8.5

CVSS 24

CVSS 3.18.8

EPSS0.00239