Vulnerabilities > CVE-2021-42027 - Unspecified vulnerability in Siemens Sinumerik Edge
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
NONE Summary
A vulnerability has been identified in SINUMERIK Edge (All versions < V3.2). The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between the client and the intended server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |