CVE-2021-33723 - AskarLabs CVE Database

CVE-2021-33723

Vendor Siemens

Product SINEC NMS

Weakness CWE-285

Published October 12, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could change the user profile of any user without proper authorization. With this, the attacker could change the password of any user in the affected system.

Key dates

02Disclosure timeline

October 12, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-33723

Related vulnerabilities

04Related CVE

CVE-2018-1082 CVE-2026-40246 free5gc UDR improper path validation allows unauthenticated deletion of Traffic Influence Subscriptions CVE-2021-25973 Publify - Improper Authorization Leads to Guest Signup Restriction Bypass CVE-2026-44504 Aegra: Cross-user run injection in /threads/{thread_id}/runs (IDOR) CVE-2021-25459