Auth bypass in Siemens Simatic Process Historian 2013 And Earlier
CVE-2021-27395
A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (…
Vulnerability class: Broken Authentication
EPSS: 0.002 (48.3th percentile) — read the EPSS interpretation.
Affected products
- Siemens Simatic Process Historian 2013 And Earlier — versions All versions
- Siemens Simatic Process Historian 2014 — versions All versions < SP3 Update 6
- Siemens Simatic Process Historian 2019 — versions All versions
- Siemens Simatic Process Historian 2020 — versions All versions
Weakness classification (CWE)
References
- cert-portal.siemens.com/productcert/pdf/ssa-766247.pdf (x_refsource_MISC)