PT-2021-5584 · Webhmi · Webhmi

Marcin Dudek

Published

2021-12-06

Updated

2021-12-07

CVE-2021-43931

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions WebHMI (affected versions not specified)

Description The issue is related to weaknesses in the authentication procedure of the WebHMI portal. Although the authentication algorithm itself is sound, a separate weakness allows the implemented mechanism to be bypassed. This could enable a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2022-00014

CVE-2021-43931

Affected Products

Webhmi

PT-2021-5584 · Webhmi · Webhmi

CVE-2021-43931

Weakness Enumeration

Related Identifiers

Affected Products

References · 5