Описание
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:siemens:siclock_tc400_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:siemens:siclock_tc400:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:siemens:siclock_tc100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:siemens:siclock_tc100:-:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00232
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-287
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.9
github
больше 3 лет назад
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users.
EPSS
Процентиль: 46%
0.00232
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-287
NVD-CWE-noinfo