A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected application does not properly handle cacheable HTTP responses in the web service. This could allow an attacker to read and modify data stored in the local cache.
                
            Metrics
Affected Vendors & Products
References
        History
                    Wed, 14 Aug 2024 18:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Siemens Siemens sinec Traffic Analyzer | |
| Weaknesses | NVD-CWE-Other | |
| CPEs | cpe:2.3:a:siemens:sinec_traffic_analyzer:*:*:*:*:*:*:*:* | |
| Vendors & Products | Siemens Siemens sinec Traffic Analyzer | |
| Metrics | ssvc 
 | 
Tue, 13 Aug 2024 08:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected application does not properly handle cacheable HTTP responses in the web service. This could allow an attacker to read and modify data stored in the local cache. | |
| Weaknesses | CWE-524 | |
| References |  | |
| Metrics | cvssV3_1 
 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: siemens
Published: 2024-08-13T07:54:26.385Z
Updated: 2024-08-14T17:46:26.134Z
Reserved: 2024-07-23T10:56:51.268Z
Link: CVE-2024-41906
 Vulnrichment
                        Vulnrichment
                    Updated: 2024-08-14T17:46:19.770Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2024-08-13T08:15:13.560
Modified: 2024-08-14T18:04:32.100
Link: CVE-2024-41906
 Redhat
                        Redhat
                    No data.