A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18). An attacker with access to the device's web server might be able to execute administrative commands without authentication.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-305120.pdf | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Information
Published : 2020-07-14 07:15
Updated : 2020-07-15 10:03
NVD link : CVE-2020-10038
Mitre link : CVE-2020-10038
JSON object : View
CWE
CWE-306
Missing Authentication for Critical Function
Products Affected
siemens
- sicam_sgu_firmware
- sicam_sgu
- sicam_t_firmware
- sicam_t
- sicam_mmu_firmware
- sicam_mmu