CVE-2022-33736 is a vulnerability in Siemens Opcenter Quality
Published on July 12, 2022
A vulnerability has been identified in Opcenter Quality V13.1 (All versions < V13.1.20220624), Opcenter Quality V13.2 (All versions < V13.2.20220624). The affected applications do not properly validate login information during authentication. This could lead to denial of service condition for existing users or allow unauthenticated remote attackers to successfully login without credentials.
Weakness Type
Incorrect Implementation of Authentication Algorithm
The requirements for the software dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect. This incorrect implementation may allow authentication to be bypassed.
Products Associated with CVE-2022-33736
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-33736 are published in Siemens Opcenter Quality:
Affected Versions
Siemens Opcenter Quality V13.1:- Version All versions < V13.1.20220624 is affected.
- Version All versions < V13.2.20220624 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.