Security Advisory

CVE-2019-13947

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-12 19:08:46

Last updated 2024-08-05 00:05:43

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The user configuration menu in the web interface of the Control Center Server (CCS) transfers user passwords in clear to the client (browser). An attacker with administrative privileges for the web interface could be able to read (and not only reset) passwords of other CCS users.

← Browse all CVEs View on cve.org ↗