3 matches found
CVE-2023-40725
creationtimestamp| type| source ---|---|--- 2023-09-12 14:22:55+00:00| seen| https://t.me/cibsecurity/70261...
CVE-2023-40725
A vulnerability has been identified in QMS Automotive All versions V12.39. The affected application returns inconsistent error messages in response to invalid user credentials during login session. This allows an attacker to enumerate usernames, and identify valid usernames...
CVE-2023-40725
CVE-2023-40725 affects Siemens QMS Automotive (all versions prior to v12.39). The issue arises from inconsistent login error messages in response to invalid credentials, enabling attacker-controlled username enumeration. Public sources (NVD/Red Hat security page and Siemens ProductCERT advisory S...