4 matches found
Siemens SICAM P850 and P855 Devices Session Fixation (CVE-2022-40226)
A vulnerability has been identified in SICAM P850 All versions V3.10, SICAM P855 All versions V3.10. Affected devices accept user defined session cookies and do not renew the session cookie after login/logout. This could allow an attacker to take over another user's session after login. This plug...
CVE-2022-40226
A vulnerability has been identified in SICAM P850 7KG8500-0AA00-0AA0 All versions V3.10, SICAM P850 7KG8500-0AA00-2AA0 All versions V3.10, SICAM P850 7KG8500-0AA10-0AA0 All versions V3.10, SICAM P850 7KG8500-0AA10-2AA0 All versions V3.10, SICAM P850 7KG8500-0AA30-0AA0 All versions V3.10, SICAM P8...
CVE-2022-40226
A vulnerability has been identified in SICAM P850 7KG8500-0AA00-0AA0 All versions V3.10, SICAM P850 7KG8500-0AA00-2AA0 All versions V3.10, SICAM P850 7KG8500-0AA10-0AA0 All versions V3.10, SICAM P850 7KG8500-0AA10-2AA0 All versions V3.10, SICAM P850 7KG8500-0AA30-0AA0 All versions V3.10, SICAM P8...
CVE-2022-40226
CVE-2022-40226 affects Siemens SICAM P850/P855 devices (all variants listed) with versions prior to 3.10. Root cause: devices accept user-defined session cookies and do not renew the session cookie after login/logout, enabling an attacker to hijack another user’s session (session fixation). Impac...