CVE-2019-18284
CVE-2019-18284 affects Siemens SPPA-T3000 Application Server (all versions before Service Pack R8.2 SP2). The AdminService is accessible without authentication, allowing an attacker to obtain password hashes and change passwords, requiring access to the Application Highway to exploit. Public expl...