How severe is CVE-2018-4855?

CVE-2018-4855 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-4855

6.5MEDIUM

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission

Published: 7/3/2018Updated: 11/21/2024

Description

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.

AI AnalysisPowered by AI

Affected Products

siemenssiclock_tc400_firmware

siemenssiclock_tc400

siemenssiclock_tc100_firmware

siemenssiclock_tc100

References

http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory
http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory