CVE-2018-4856

CVE-2018-4856

Vendor Siemens Ag
Product SICLOCK TC100, SICLOCK TC400
Weakness CWE-287 · Improper authentication
Published July 3, 2018
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions). An attacker with administrative access to the device's management interface could lock out legitimate users. Manual interaction is required to restore the access of legitimate users.

Key dates

02Disclosure timeline

July 3, 2018 CVE published
September 17, 2024 Record updated