Siemens Siveillance Identity 1.6.280.0

CPE Details

Siemens Siveillance Identity 1.6.280.0
siemens
siveillance_identity
1.6.280.0
2021-12-16
19h03 +00:00
2021-12-16
19h27 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:siemens:siveillance_identity:1.6.280.0:*:*:*:*:*:*:*

Informations

Vendor

siemens

Product

siveillance_identity

Version

1.6.280.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-44524 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal user authentication service. This could allow an unauthenticated remote attacker to trigger several actions on behalf of valid user accounts.
9.8
Critique
CVE-2021-44523 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal activity feed database. This could allow an unauthenticated remote attacker to read, modify or delete activity feed entries.
9.1
Critique
CVE-2021-44522 2021-12-14 11h07 +00:00 A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal message broker system. This could allow an unauthenticated remote attacker to subscribe to arbitrary message queues.
7.5
Haute