Primary

Context

Siemens Gridscale X Prepay User Enumeration Vulnerability

Vulnerability

A user enumeration vulnerability has been identified in Siemens Gridscale X Prepay, affecting all versions prior to 4.2.1. The vulnerability arises from distinguishable responses that allow an unauthenticated remote attacker to determine the validity of usernames. This could facilitate a brute force attack using valid usernames.

Impact

Exploitation of this vulnerability could lead to unauthorized username enumeration, allowing attackers to identify valid users for potential brute force attacks.

Remediation

Siemens has released a new version for Gridscale X Prepay. Please contact your local Siemens representative for further information.

Added: Dec 9, 2025, 8:14 PM

Updated: Dec 9, 2025, 8:14 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

1.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

1.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens Gridscale X Prepay User Enumeration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating