How severe is CVE-2018-4855?

CVE-2018-4855 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-4855

6.5MEDIUM

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission

Publicado: 7/3/2018Atualizado: 11/21/2024

Descrição

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.

Análise IADesenvolvido por IA

Produtos Afetados

siemenssiclock_tc400_firmware

siemenssiclock_tc400

siemenssiclock_tc100_firmware

siemenssiclock_tc100

Referências

http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory
http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory