A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application does not properly enforce authorization checks. This could allow an authenticated attacker to bypass the checks and modify settings in the application without authorization.
Metrics
Affected Vendors & Products
References
History
Wed, 14 Aug 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Siemens
Siemens sinec Nms |
|
CPEs | cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:* | |
Vendors & Products |
Siemens
Siemens sinec Nms |
Tue, 13 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 13 Aug 2024 08:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application does not properly enforce authorization checks. This could allow an authenticated attacker to bypass the checks and modify settings in the application without authorization. | |
Weaknesses | CWE-863 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: siemens
Published: 2024-08-13T07:54:34.225Z
Updated: 2024-08-13T13:18:22.820Z
Reserved: 2024-07-24T15:11:47.851Z
Link: CVE-2024-41941
Vulnrichment
Updated: 2024-08-13T13:17:39.429Z
NVD
Status : Analyzed
Published: 2024-08-13T08:15:15.160
Modified: 2024-08-14T18:12:25.063
Link: CVE-2024-41941
Redhat
No data.