CVE-2020-10045

Summary

A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18). An error in the challenge-response procedure could allow an attacker to replay authentication traffic and gain access to protected areas of the web application.

Affected Software

VendorProductVersion RangeStatus
Siemens AGSICAM MMUAll versions < V2.05affected
Siemens AGSICAM SGUAll versionsaffected
Siemens AGSICAM TAll versions < V2.18affected

Weaknesses

  • CWE-294: CWE-294: Authentication Bypass by Capture-replay

ADP Enrichment

CVE Program Container

Additional References

References