High severity7.4NVD Advisory· Published Oct 11, 2022· Updated Jun 17, 2026
CVE-2022-40147
CVE-2022-40147
Description
A vulnerability has been identified in Industrial Edge Management (All versions < V1.5.1). The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between the client and the intended server.
Affected products
2<1.5.1+ 1 more
- (no CPE)range: <1.5.1
- (no CPE)range: All versions < V1.5.1
Patches
Vulnerability mechanics
References
1- cert-portal.siemens.com/productcert/pdf/ssa-649853.pdfnvdVendor Advisory
News mentions
0No linked articles in our index yet.