Vulnerabilities > CVE-2024-41906 - Unspecified vulnerability in Siemens Sinec Traffic Analyzer

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

siemens

NVD

Published: 2024-08-13

Updated: 2024-08-14

Summary

A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected application does not properly handle cacheable HTTP responses in the web service. This could allow an attacker to read and modify data stored in the local cache.

Vulnerable Configurations

Part	Description	Count
Application	Siemens Siemens Sinec Traffic Analyzer *	1

References

https://cert-portal.siemens.com/productcert/html/ssa-716317.html