Home
HIGH: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NHIGH: 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:NDefault status
unknown
Any version before V2312.0014
affected
Default status
unknown
Any version before V2406.0012
affected
Default status
unknown
Any version before V2412.0009
affected
Default status
unknown
Any version before V2506.0005
affected
Default status
unknown
Any version before *
unaffected
Description
A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512 (All versions). The affected application contains hardcoded key which is used for obfuscation stored directly into the application. This could allow an attacker to obtain these keys and misuse them to gain unauthorized access.
Problem types
CWE-798: Use of Hard-coded Credentials
Product status
Any version before V2312.0014
Any version before V2406.0012
Any version before V2412.0009
Any version before V2506.0005
Any version before *
References
cert-portal.siemens.com/productcert/html/ssa-827383.html