Home
CRITICAL: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCRITICAL: 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:HDefault status
unknown
Any version before V1.24.2
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V1.24.2
affected
Default status
unknown
Any version before V1.25.1
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V1.24.2
affected
Default status
unknown
Any version before V1.25.1
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V1.24.2
affected
Default status
unknown
Any version before V1.24.2
affected
Default status
unknown
Any version before V2.2
affected
Default status
unknown
Any version before V2.2
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V1.25.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V3.1
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Default status
unknown
Any version before V21
affected
Description
Affected devices do not properly enforce user authentication on specific API endpoints. This could facilitate an unauthenticated remote attacker to circumvent authentication and impersonate a legitimate user. Successful exploitation requires that the attacker has learned the identity of a legitimate user.
Problem types
CWE-639: Authorization Bypass Through User-Controlled Key
Product status
Any version before V1.24.2
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before V1.24.2
Any version before V1.25.1
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before V1.24.2
Any version before V1.25.1
Any version before *
Any version before *
Any version before *
Any version before *
Any version before *
Any version before V1.24.2
Any version before V1.24.2
Any version before V2.2
Any version before V2.2
Any version before *
Any version before *
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V21
Any version before V1.25.1
Any version before V3.1
Any version before V3.1
Any version before V3.1
Any version before V3.1
Any version before V3.1
Any version before V3.1
Any version before V3.1
Any version before V21
Any version before V21
Any version before V21
References
cert-portal.siemens.com/productcert/html/ssa-014678.html
cert-portal.siemens.com/productcert/html/ssa-001536.html
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.