exploitDog

GHSA-857j-r82m-hrw9

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

Siemens SINUMERIK Integrate Operate Clients between 2.0.3.00.016 (including) and 2.0.6 (excluding) and between 3.0.4.00.032 (including) and 3.0.6 (excluding) contain a vulnerability that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack.

Siemens SINUMERIK Integrate Operate Clients between 2.0.3.00.016 (including) and 2.0.6 (excluding) and between 3.0.4.00.032 (including) and 3.0.6 (excluding) contain a vulnerability that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack.

Ссылки

EPSS

Процентиль: 47%

0.0024

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-693

Связанные уязвимости

CVE-2017-2685

CVSS3: 7.4

nvd

почти 9 лет назад

Siemens SINUMERIK Integrate Operate Clients between 2.0.3.00.016 (including) and 2.0.6 (excluding) and between 3.0.4.00.032 (including) and 3.0.6 (excluding) contain a vulnerability that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack.

EPSS

Процентиль: 47%

0.0024

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-200

CWE-693