A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The user configuration menu in the web interface of the Control Center Server (CCS) transfers user passwords in clear to the client (browser). An attacker with administrative privileges for the web interface could be able to read (and not only reset) passwords of other CCS users.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NSiemens Sinvr 3 Central Control Server
APPSiemenswszystkie wersjeSiemens Sinvr 3 Video Server
APPSiemenswszystkie wersje
Related vulnerabilities
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center...
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The HTTP service (def...
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). The streaming service...
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center...
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center...