Описание
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker in a Man-in-the-Middle position between the SiPass integrated server and SiPass integrated clients to read or modify the network communication.
Ссылки
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.65 (включая)
cpe:2.3:a:siemens:sipass_integrated:*:sp2:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00194
Низкий
7.4 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-300
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.4
github
больше 3 лет назад
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker in a Man-in-the-Middle position between the SiPass integrated server and SiPass integrated clients to read or modify the network communication.
EPSS
Процентиль: 41%
0.00194
Низкий
7.4 High
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-300
NVD-CWE-noinfo