CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34464

A vulnerability has been identified in SICAM GridEdge (Classic) (All versions < V2.7.3). The affected application uses an improperly protected file to import SSH keys. This could allow attackers with access to the filesystem of the host on which SICAM GridEdge runs to inject a custom SSH key to that file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.3%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 2.1

References

https://cert-portal.siemens.com/productcert/html/ssa-225578.html
https://cert-portal.siemens.com/productcert/pdf/ssa-225578.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-225578.pdf

Products affected by CVE-2022-34464

Siemens » Sicam Gridedge Essential Arm » Version: N/A

cpe:2.3:a:siemens:sicam_gridedge_essential_arm:-
Siemens » Sicam Gridedge Essential Gds Arm » Version: N/A

cpe:2.3:a:siemens:sicam_gridedge_essential_gds_arm:-
Siemens » Sicam Gridedge Essential Gds Intel » Version: Any

cpe:2.3:a:siemens:sicam_gridedge_essential_gds_intel:*
Siemens » Sicam Gridedge Essential Intel » Version: Any

cpe:2.3:a:siemens:sicam_gridedge_essential_intel:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34464

Products

Pricing

Contact Us