Vulnerability Details CVE-2024-35210
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The affected web server is not enforcing HSTS. This could allow an attacker to perform downgrade attacks exposing confidential information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.8%
CVSS Severity
CVSS v3 Score 5.1
References
Products affected by CVE-2024-35210
-
cpe:2.3:a:siemens:sinec_traffic_analyzer:-
-
cpe:2.3:a:siemens:sinec_traffic_analyzer:1.1