CVE-2021-37184

Name of the Vulnerable Software and Affected Versions Industrial Edge Management versions prior to V1.3

Description A vulnerability has been identified that allows an unauthenticated attacker to change the password of any user in the system under certain circumstances, potentially enabling the attacker to impersonate any valid user on an affected system.

Recommendations For versions prior to V1.3, update to version V1.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the system and monitoring for suspicious activity until the update can be applied.