How severe is CVE-2018-4855?

CVE-2018-4855 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-4855

6.5MEDIUM

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission

Veröffentlicht: 7/3/2018Aktualisiert: 11/21/2024

Beschreibung

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.

KI-AnalyseKI-gestützt

Betroffene Produkte

siemenssiclock_tc400_firmware

siemenssiclock_tc400

siemenssiclock_tc100_firmware

siemenssiclock_tc100

Referenzen

http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory
http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory