Back to search
CVE-2018-4855
Published: Jul 3, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). Unencrypted storage of passwords in the client configuration files and during network transmission could allow an attacker in a privileged position to obtain access passwords.
| Vendor | Product | Versions |
|---|---|---|
Siemens AG | SICLOCK TC100, SICLOCK TC400 | affected SICLOCK TC100 : All versionsaffected SICLOCK TC400 : All versions |
Weaknesses (CWE)
References
104672
vdb-entry
x_refsource_BID
https://cert-portal.siemens.com/productcert/pdf/ssa-197012.pdf
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now