CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-41543

A vulnerability has been identified in Climatix POL909 (AWB module) (All versions < V11.44), Climatix POL909 (AWM module) (All versions < V11.36). The handling of log files in the web application of affected devices contains an information disclosure vulnerability which could allow logged in users to access sensitive files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.1%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

https://cert-portal.siemens.com/productcert/pdf/ssa-252466.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-252466.pdf

Products affected by CVE-2021-41543

Siemens » Climatix Pol909 » Version: N/A

cpe:2.3:h:siemens:climatix_pol909:-
Siemens » Climatix Pol909 Firmware » Version: 11.34

cpe:2.3:o:siemens:climatix_pol909_firmware:11.34
Siemens » Climatix Pol909 Firmware » Version: 11.42

cpe:2.3:o:siemens:climatix_pol909_firmware:11.42

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41543

Products

Pricing

Contact Us