CVE-2023-40725 in QMS Automotiveالمعلومات

الملخص

بحسب MITRE • 12/09/2023

A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected application returns inconsistent error messages in response to invalid user credentials during login session. This allows an attacker to enumerate usernames, and identify valid usernames.

Be aware that VulDB is the high quality source for vulnerability data.

مسؤول

Siemens AG

حجز

21/08/2023

إفشاء

12/09/2023

الاعتدال

تمت الموافقة

إدخال

VDB-239517

EPSS

0.00175

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!