CVE-2021-44522

CVE-2021-44522

Vendor Siemens

Product SiPass integrated V2.76

Weakness CWE-668

Published December 14, 2021

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All versions < V1.6.284.0). Affected applications insufficiently limit the access to the internal message broker system. This could allow an unauthenticated remote attacker to subscribe to arbitrary message queues.

Key dates

02Disclosure timeline

December 14, 2021 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-44522 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/668.html

Related vulnerabilities

Identifiers

CVE CVE-2021-44522

CWE CWE-668

Affected versions

Vendor Siemens

Product SiPass integrated V2.76

Affected All versions

Vendor Siemens

Product SiPass integrated V2.80

Affected All versions

Vendor Siemens

Product SiPass integrated V2.85

Affected All versions

Vendor Siemens

Product Siveillance Identity V1.5

Affected All versions

Vendor Siemens

Product Siveillance Identity V1.6

Affected All versions < V1.6.284.0

01Description

02Disclosure timeline

03References

04Related CVE