A vulnerability has been identified in Opcenter Execution Core (V8.2), Opcenter Execution Core (V8.3). The application contains an information leakage vulnerability in the handling of web client sessions. A local attacker who has access to the Web Client Session Storage could disclose the passwords of currently logged-in users.
[
{
"product": "Opcenter Execution Core",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "V8.2"
}
]
},
{
"product": "Opcenter Execution Core",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "V8.3"
}
]
}
]