CVE-2024-46889 | Siemens SINEC INS up to 1.0 SP2 Update 2 Configuration File hard-coded key (ssa-915275)

Posted by Angelo Barbosa | Nov 12, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Siemens SINEC INS up to 1.0 SP2 Update 2. This affects an unknown part of the component Configuration File Handler. The manipulation leads to use of hard-coded cryptographic key
.

This vulnerability is uniquely identified as CVE-2024-46889. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-46889 | Siemens SINEC INS up to 1.0 SP2 Update 2 Configuration File hard-coded key (ssa-915275)

Related Posts

CVE-2024-6202 | Halo Service Solutions HaloITSM up to 2.146.0 SAML XML Signature Wrapping authorization

CVE-2024-8560 | SourceCodester Simple Invoice Generator System 1.0 /save_invoice.php sql injection

CVE-2024-34461 | Zenario Twig Snippet Plugin prior 9.5.60437 HEAD/BODY Privilege Escalation

CVE-2024-29650 | thi.ng paths up to 5.1.62 mut/mutInManyUnsafe Privilege Escalation