VDB

CVE-2021-33709

CVE-2021-33709 PUBLISHED CVSS 4.300000190734863 MEDIUM

A vulnerability has been identified in Teamcenter Active Workspace V4 (All versions < V4.3.9), Teamcenter Active Workspace V5.0 (All versions < V5.0.7), Teamcenter Active Workspace V5.1 (All versions < V5.1.4). By sending malformed requests, a remote attacker could leak an application token due to an error not properly handled by the system.

EPSS 0.51% · 66.9th percentile

Risk Scores

CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.51%
66.9th percentile

Affected Products

VendorProductVersions
SiemensTeamcenter Active Workspace V5.1All versions < V5.1.4
SiemensTeamcenter Active Workspace V5.0All versions < V5.0.7
SiemensTeamcenter Active Workspace V4*
siemensteamcenter_active_workspace4.0.0, 5.0.0, 5.1.0

Timeline

  • Jul 13, 2021 CVE Published
  • Jul 14, 2021 EPSS Score
  • Sep 12, 2021 EPSS Score
  • Nov 10, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Mar 9, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 8, 2022 EPSS Score
  • Jul 7, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 4, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›