Pqs 7.0

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

siemens

CWE-255

NVD

Published: 2017-02-13

Updated: 2023-10-17

Summary

An issue was discovered in Siemens SICAM PAS before 8.00. Because of Storing Passwords in a Recoverable Format, an authenticated local attacker with certain privileges could possibly reconstruct the passwords of users for accessing the database.

Vulnerable Configurations

Part	Description	Count
Application	Siemens Siemens Sicam Pas/Pqs - Siemens Sicam Pas/Pqs 7.0	2

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-336-01
http://www.securityfocus.com/bid/94552