CVE-2023-40725 in QMS Automotiveinfo

Zusammenfassung

von MITRE • 12.09.2023

A vulnerability has been identified in QMS Automotive (All versions < V12.39). The affected application returns inconsistent error messages in response to invalid user credentials during login session. This allows an attacker to enumerate usernames, and identify valid usernames.

Be aware that VulDB is the high quality source for vulnerability data.

Zuständig

Siemens AG

Reservieren

21.08.2023

Veröffentlichung

12.09.2023

Moderieren

akzeptiert

Eintrag

VDB-239517

CPE

bereit

EPSS

0.00175

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!