CVE-2021-27389

Summary

A vulnerability has been identified in Opcenter Quality (All versions < V12.2), QMS Automotive (All versions < V12.30). A private sign key is shipped with the product without adequate protection.

Affected Software

VendorProductVersion RangeStatus
SiemensOpcenter QualityAll versions < V12.2affected
SiemensQMS AutomotiveAll versions < V12.30affected

Weaknesses

  • CWE-321: CWE-321: Use of Hard-coded Cryptographic Key

ADP Enrichment

CVE Program Container

Additional References

References