SSA-359713 — Vulnetix

SSA-359713 PUBLISHED CVSS 10 CRITICAL

Industrial Edge Management contains an Authorization Bypass vulnerability that could allow an unauthenticated remote attacker to impersonate other devices onboarded to the system. Siemens has released new versions for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	Industrial Edge Management Virtual
	Industrial Edge Management Pro

Exploit Intelligence

https://cert-portal.siemens.com/productcert/html/ssa-359713.html (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-359713.json (circl)

Timeline

Sep 10, 2024 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-359713.html advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-359713.json advisory

Open in Interactive Console →