PT-2024-11056 · Meinberg · Meinberg Lantime-Firmware

Published

2024-02-04

·

Updated

2025-06-17

·

CVE-2021-46903

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
Name of the Vulnerable Software and Affected Versions Meinberg LANTIME-Firmware versions prior to 6.24.029 Meinberg LANTIME-Firmware versions 7 prior to 7.04.008
Description An issue was discovered in the LTOS-Web-Interface of Meinberg LANTIME-Firmware, where an admin can delete required user accounts, violating expected access control.
Recommendations For versions prior to 6.24.029, update to version 6.24.029 or later. For versions 7 prior to 7.04.008, update to version 7.04.008 or later.

Fix

Improper Access Control

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2021-46903

Affected Products

Meinberg Lantime-Firmware