Unrated severityNVD Advisory· Published Dec 14, 2021· Updated Aug 4, 2024
CVE-2021-44522
CVE-2021-44522
Description
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal message broker system. This could allow an unauthenticated remote attacker to subscribe to arbitrary message queues.
Affected products
7< V1.6.284.0 (V1.5 all versions)+ 2 more
- (no CPE)range: < V1.6.284.0 (V1.5 all versions)
- (no CPE)range: All versions
- (no CPE)range: All versions < V1.6.284.0
V2.76, V2.80, V2.85 (all versions)+ 3 more
- (no CPE)range: V2.76, V2.80, V2.85 (all versions)
- (no CPE)range: All versions
- (no CPE)range: All versions
- (no CPE)range: All versions
Patches
Vulnerability mechanics
References
2- cert-portal.siemens.com/productcert/pdf/ssa-160202.pdfmitrex_refsource_MISC
- cert-portal.siemens.com/productcert/pdf/ssa-463116.pdfmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.