CVE-2022-30231

Summary

A vulnerability has been identified in SICAM GridEdge (Classic) (All versions < V2.6.6). The affected application discloses password hashes of other users upon request. This could allow an authenticated user to retrieve another user's password hash.

Affected Software

VendorProductVersion RangeStatus
SiemensSICAM GridEdge (Classic)0 < V2.6.6affected

Weaknesses

  • CWE-402: CWE-402: Transmission of Private Resources into a New Sphere ('Resource Leak')

ADP Enrichment

CVE Program Container

Additional References

References