CVE-2021-27395
CVE-2021-27395
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
12 oct 2021Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (All versions). An interface in the software that is used for critical functionalities lacks authentication, which could allow a malicious user to maliciously insert, modify or delete data.
Productos afectados
Siemens · SIMATIC Process Historian 2013 and earlierSiemens · SIMATIC Process Historian 2014Siemens · SIMATIC Process Historian 2019Siemens · SIMATIC Process Historian 2020¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →