How severe is CVE-2018-4855?

CVE-2018-4855 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-4855

6.5MEDIUM

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission

Publicado: 7/3/2018Actualizado: 11/21/2024

Descripción

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.

Análisis IAImpulsado por IA

Productos Afectados

siemenssiclock_tc400_firmware

siemenssiclock_tc400

siemenssiclock_tc100_firmware

siemenssiclock_tc100

Referencias

http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory
http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory