CVE-2021-41543

Summary

A vulnerability has been identified in Climatix POL909 (AWB module) (All versions < V11.44), Climatix POL909 (AWM module) (All versions < V11.36). The handling of log files in the web application of affected devices contains an information disclosure vulnerability which could allow logged in users to access sensitive files.

Affected Software

VendorProductVersion RangeStatus
SiemensClimatix POL909 (AWB module)All versions < V11.44affected
SiemensClimatix POL909 (AWM module)All versions < V11.36affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References