A vulnerability has been identified in Siveillance Video Mobile Server V2022 R2 (All versions < V22.2a (80)). The mobile server component of affected applications improperly handles the log in for Active Directory accounts that are part of Administrators group. This could allow an unauthenticated remote attacker to access the application without a valid account.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-640732.pdf | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: siemens
Published: 2022-10-21T00:00:00
Updated: 2022-10-21T00:00:00
Reserved: 2022-10-18T00:00:00
Link: CVE-2022-43400
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-10-21T14:15:09.483
Modified: 2023-06-27T13:23:45.353
Link: CVE-2022-43400
JSON object: View
Redhat Information
No data.