Vulnerabilities > CVE-2022-31619 - Unspecified vulnerability in Siemens Teamcenter

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

siemens

NVD

Published: 2022-06-14

Updated: 2024-11-21

Summary

A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.13), Teamcenter V13.0 (All versions < V13.0.0.9), Teamcenter V13.1 (All versions < V13.1.0.9), Teamcenter V13.2 (All versions < V13.2.0.9), Teamcenter V13.3 (All versions < V13.3.0.3), Teamcenter V14.0 (All versions < V14.0.0.2). Java EE Server Manager HTML Adaptor in Teamcenter consists of default hardcoded credentials. Access to the application allows a user to perform a series of actions that could potentially lead to remote code execution with elevated permissions.

Vulnerable Configurations

Part	Description	Count
Application	Siemens Siemens Teamcenter 13.3 Siemens Teamcenter 13.0 Siemens Teamcenter 13.1 Siemens Teamcenter 12.4 Siemens Teamcenter 14.0 Siemens Teamcenter 13.2	6

Summary

Vulnerable Configurations

References