CVE-2017-9939
First published: Tue Aug 08 2017(Updated: )
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with network access to the SiPass integrated server to bypass the authentication mechanism and perform administrative operations.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SiPass integrated | <=2.65 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-9939?
CVE-2017-9939 has been classified as a critical vulnerability due to its potential to allow unauthorized administrative access.
How do I fix CVE-2017-9939?
To fix CVE-2017-9939, upgrade Siemens SiPass integrated to version 2.70 or later.
Who is affected by CVE-2017-9939?
CVE-2017-9939 affects all versions of Siemens SiPass integrated prior to version 2.70.
What impact does CVE-2017-9939 have on systems?
CVE-2017-9939 allows attackers to bypass authentication and perform administrative operations on the affected server.
Is there a workaround for CVE-2017-9939?
There are currently no known workarounds for CVE-2017-9939, so upgrading is the recommended action.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- vendor/siemens
- canonical/siemens sipass integrated
- version/siemens sipass integrated/2.65