Lucene search
SiemensCVELIST:CVE-2021-44522HistoryDec 14, 2021 - 12:07 p.m.
CVE-2021-44522
2021-12-1412:07:09
CWE-668
siemens
www.cve.org
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal message broker system. This could allow an unauthenticated remote attacker to subscribe to arbitrary message queues.
CNA Affected
[
{
"product": "SiPass integrated V2.76",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SiPass integrated V2.80",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SiPass integrated V2.85",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "Siveillance Identity V1.5",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "Siveillance Identity V1.6",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V1.6.284.0"
}
]
}
]Related
nvd
nvd
CVE-2021-44522
2021-12-14 12:15:12
prion
prion
Design/Logic Flaw
2021-12-14 12:15:00
cve
cve
CVE-2021-44522
2021-12-14 12:15:12
cnvd
cnvd
SiPass integrated access control vulnerability
2021-12-15 00:00:00
ics
ics
Siemens SiPass Integrated
2021-12-16 12:00:00
Siemens Siveillance Identity
2021-12-16 12:00:00