CVE-2024-41681 Information

Description

A vulnerability has been identified in Location Intelligence family (All versions < V4.4). The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connection between legitimate clients and the affected device.

Reference

https://cert-portal.siemens.com/productcert/html/ssa-720392.html