2 matches found
CVE-2017-9941
Siemens SiPass integrated (all versions before V2.70) is affected by a man‑in‑the‑middle vulnerability (CVE-2017-9941) that could allow an attacker with network access between the SiPass server and clients to read or modify network communications. The issue stems from an authentication/communicat...
Siemens Patches Authentication Bypass Flaw in SiPass Server
A handful of vulnerabilities in Siemens’ SiPass integrated server have been patched, including one that allows an attacker to bypass authentication on the box. SiPass is the company’s integrated access control server managing physical access in a number of industries and use cases. The product...