Siemens Siveillance Identity 1.6.280.0

CPE Details

Siemens Siveillance Identity 1.6.280.0
siemens
siveillance_identity
1.6.280.0
2021-12-16
19h03 +00:00
2021-12-16
19h27 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:siemens:siveillance_identity:1.6.280.0:*:*:*:*:*:*:*

Informations

Vendor

siemens

Product

siveillance_identity

Version

1.6.280.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-44524 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal user authentication service. This could allow an unauthenticated remote attacker to trigger several actions on behalf of valid user accounts.
9.8
Critical
CVE-2021-44523 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal activity feed database. This could allow an unauthenticated remote attacker to read, modify or delete activity feed entries.
9.1
Critical
CVE-2021-44522 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal message broker system. This could allow an unauthenticated remote attacker to subscribe to arbitrary message queues.
7.5
High