How severe is CVE-2018-4855?

CVE-2018-4855 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2018-4855

6.5MEDIUM

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission

Опубликовано: 7/3/2018Обновлено: 11/21/2024

Описание

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.

ИИ-АнализНа базе ИИ

Затронутые продукты

siemenssiclock_tc400_firmware

siemenssiclock_tc400

siemenssiclock_tc100_firmware

siemenssiclock_tc100

Ссылки

http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory
http://www.securityfocus.com/bid/104672
Third Party AdvisoryVDB Entry
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
MitigationVendor Advisory