3 matches found
Siemens SCALANCE and RUGGEDCOM Products Missing Authorization (CVE-2022-31765)
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
CVE-2022-31765
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges...
CVE-2022-31765
Siemens SCALANCE and RUGGEDCOM devices are affected by CVE-2022-31765 due to missing authorization in the web interface change-password function. Affected products (multiple SCALANCE and RUGGEDCOM models) before the fixed version (V7.1.2) allow low-privileged users to escalate privileges, with CV...