CVE-2021-37184

CVE-2021-37184

Vendor Siemens
Product Industrial Edge Management
Weakness CWE-639 · IDOR
Published September 14, 2021
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in Industrial Edge Management (All versions < V1.3). An unauthenticated attacker could change the the password of any user in the system under certain circumstances. With this an attacker could impersonate any valid user on an affected system.

Key dates

02Disclosure timeline

September 14, 2021 CVE published
August 4, 2024 Record updated