Vulnerabilities > CVE-2016-8566 - Credentials Management vulnerability in Siemens Sicam Pas/Pqs 7.0

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
siemens
CWE-255

Summary

An issue was discovered in Siemens SICAM PAS before 8.00. Because of Storing Passwords in a Recoverable Format, an authenticated local attacker with certain privileges could possibly reconstruct the passwords of users for accessing the database.

Vulnerable Configurations

Part Description Count
Application
Siemens
2

Common Weakness Enumeration (CWE)