漏洞标题
N/A
漏洞描述信息
已确定SICAM GridEdge Essential ARM(所有版本 < V2.6.6)、SICAM GridEdge Essential Intel(所有版本 < V2.6.6)、SICAM GridEdge Essential with GDS ARM(所有版本 < V2.6.6)、SICAM GridEdge Essential with GDS Intel(所有版本 < V2.6.6)的软件中存在一个漏洞。受影响的软件不需要授权访问 privileged 功能。这可能导致未授权的黑客更改用户的数据,例如密码,如果已知用户的 ID。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions < V2.6.6), SICAM GridEdge Essential Intel (All versions < V2.6.6), SICAM GridEdge Essential with GDS ARM (All versions < V2.6.6), SICAM GridEdge Essential with GDS Intel (All versions < V2.6.6). The affected software does not require authenticated access for privileged functions. This could allow an unauthenticated attacker to change data of an user, such as credentials, in case that user's id is known.
CVSS信息
N/A
漏洞类别
关键功能的认证机制缺失
漏洞标题
Siemens SICAM GridEdge Essential 授权问题漏洞
漏洞描述信息
Siemens SICAM GridEdge Essential是德国西门子(Siemens)公司的一个数字产业和智能基础设施的产品目录和在线订购系统。 Siemens SICAM GridEdge Essential ARM 2.6.6 之前版本,SICAM GridEdge Essential Intel 2.6.6之前版本,SICAM GridEdge Essential with GDS ARM 2.6.6之前版本,SICAM GridEdge Essential with GDS Intel 2
CVSS信息
N/A
漏洞类别
授权问题