Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCertccCVELIST:CVE-2011-4508
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4508

2022-10-0316:15:14
certcc
www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON

The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime generates predictable authentication tokens for cookies, which makes it easier for remote attackers to bypass authentication via a crafted cookie.

Related

cve 1
prion 1
nvd 1
ics 2
openvas 2
kaspersky 1
cve
cve
CVE-2011-4508
2022-10-03 16:15:14
prion
prion
Authentication flaw
2012-02-03 20:55:00
nvd
nvd
CVE-2011-4508
2012-02-03 20:55:01
ics
ics
Siemens Simatic HMI Authentication Vulnerabilities
2013-04-22 12:00:00
Siemens SIMATIC WinCC Vulnerabilities (UPDATE A)
2018-09-06 12:00:00
openvas
openvas
Multiple Siemens SIMATIC Products Authentication Bypass Vulnerabilities
2011-12-23 00:00:00
Multiple Siemens SIMATIC Products Authentication Bypass Vulnerabilities
2011-12-23 00:00:00
kaspersky
kaspersky
KLA10394 Multiple vulnerabilities in Siemens
2012-01-24 00:00:00

6.6 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON
Related for CVELIST:CVE-2011-4508
cve1prion1nvd1ics2openvas2kaspersky1