cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-34464,https://securityvulnerability.io/vulnerability/CVE-2022-34464,Improperly Protected File Vulnerability in SICAM GridEdge Essential by Siemens,"A vulnerability exists within SICAM GridEdge Essential products, where an improperly secured file allows the importation of SSH keys. This flaw enables attackers with filesystem access to the host system to inject malicious SSH keys, potentially compromising secure connections and allowing unauthorized remote access. Users of all versions of SICAM GridEdge Essential for ARM and GDS, as well as Intel versions prior to V2.7.3, should take immediate action to mitigate the risk associated with this vulnerability.",Siemens,"Sicam Gridedge Essential Arm,Sicam Gridedge Essential Intel,Sicam Gridedge Essential With Gds Arm,Sicam Gridedge Essential With Gds Intel",5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,false,false,2022-07-12T10:07:19.000Z,0
CVE-2022-30231,https://securityvulnerability.io/vulnerability/CVE-2022-30231,Password Disclosure Vulnerability in SICAM GridEdge Essential Solutions by Siemens,"A vulnerability exists in various versions of the SICAM GridEdge Essential software solutions that allows authenticated users to request and retrieve password hashes of other users. This security flaw can lead to unauthorized access if exploited, as it enables a user to obtain sensitive password information from the system.",Siemens,"Sicam Gridedge Essential Arm,Sicam Gridedge Essential Intel,Sicam Gridedge Essential With Gds Arm,Sicam Gridedge Essential With Gds Intel",4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-06-14T09:21:53.000Z,0
CVE-2022-30230,https://securityvulnerability.io/vulnerability/CVE-2022-30230,Unrestricted User Creation Vulnerability in SICAM GridEdge by Siemens,"A security flaw has been discovered in SICAM GridEdge that enables attackers without authentication to create new users with administrative privileges. This vulnerability affects various versions of the product, specifically all versions prior to V2.6.6 across different configurations, including ARM and Intel variants. The presence of this issue poses a significant risk as it violates access control by not requiring proper authentication for sensitive functions.",Siemens,"Sicam Gridedge Essential Arm,Sicam Gridedge Essential Intel,Sicam Gridedge Essential With Gds Arm,Sicam Gridedge Essential With Gds Intel",9.8,CRITICAL,0.0020200000144541264,false,,false,false,false,,false,false,2022-06-14T09:21:51.000Z,0
CVE-2022-30229,https://securityvulnerability.io/vulnerability/CVE-2022-30229,Unauthorized Data Modification in SICAM GridEdge Essential by Siemens,"A serious security flaw exists in SICAM GridEdge Essential software that permits unauthorized users to perform privileged actions without authentication. This vulnerability allows attackers to alter user data, including sensitive credentials, provided they know the user ID. Affected versions include all versions prior to V2.6.6 for various configurations of the product. This weakness can significantly compromise the integrity and confidentiality of the affected systems, making it crucial for users to update to the latest version to mitigate potential risks.",Siemens,"Sicam Gridedge Essential Arm,Sicam Gridedge Essential Intel,Sicam Gridedge Essential With Gds Arm,Sicam Gridedge Essential With Gds Intel",5.3,MEDIUM,0.0007699999841861427,false,,false,false,false,,false,false,2022-06-14T09:21:50.000Z,0
CVE-2022-30228,https://securityvulnerability.io/vulnerability/CVE-2022-30228,Cross-Origin Resource Sharing Flaw in SICAM GridEdge Essential by Siemens,"A significant vulnerability has been identified in various versions of SICAM GridEdge Essential software, including both ARM and Intel builds as well as configurations with GDS. The flaw arises from the failure to enforce cross-origin resource sharing (CORS) restrictions during critical operations. This oversight allows attackers to potentially exploit the system if they can trick a legitimate user into accessing malicious resources. Such an attack could lead to improper handling of sensitive data and unauthorized actions within the affected systems.",Siemens,"Sicam Gridedge Essential Arm,Sicam Gridedge Essential Intel,Sicam Gridedge Essential With Gds Arm,Sicam Gridedge Essential With Gds Intel",6.5,MEDIUM,0.0007300000288523734,false,,false,false,false,,false,false,2022-06-14T09:21:48.000Z,0