CVE-2024-31854
- EPSS 0.03%
- Published 08.07.2025 10:34:22
- Last modified 20.08.2025 16:17:45
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name against an expe...
CVE-2024-31853
- EPSS 0.03%
- Published 08.07.2025 10:34:21
- Last modified 20.08.2025 16:19:01
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of that device'...
CVE-2023-38641
- EPSS 0.05%
- Published 08.08.2023 10:15:16
- Last modified 21.11.2024 08:13:58
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected application's database service is executed as `NT AUTHORITY\SYSTEM`. This could allow a local attacker to execute operating system commands with elevated p...
CVE-2022-39062
- EPSS 0.05%
- Published 08.08.2023 10:15:12
- Last modified 21.11.2024 07:17:28
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). Affected applications do not properly set permissions for product folders. This could allow an authenticated attacker with low privileges to replace DLLs and conduct a p...
CVE-2021-45106
- EPSS 0.22%
- Published 09.02.2022 16:15:14
- Last modified 21.11.2024 06:31:58
A vulnerability has been identified in SICAM TOOLBOX II (All versions). Affected applications use a circumventable access control within a database service. This could allow an attacker to access the database.