Vulnerability-Lookup

CVE-2024-50310 (GCVE-0-2024-50310)

Vulnerability from cvelistv5 – Published: 2024-11-12 12:49 – Updated: 2024-11-12 16:08

Summary

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions >= V4.0.44 < V4.0.50). Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

CWE

CWE-863 - Incorrect Authorization

Assigner

siemens

References

URL

Tags

https://cert-portal.siemens.com/productcert/html/…

Impacted products

	Vendor	Product	Version
	Siemens	SIMATIC CP 1543-1 V4.0	Affected: V4.0.44 , < V4.0.50 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:h:siemens:simatic_cp_1543-1:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "simatic_cp_1543-1",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "V4.0.50",
                "status": "affected",
                "version": "V4.0.44",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-50310",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-12T16:07:35.995670Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-12T16:08:37.035Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC CP 1543-1 V4.0",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.0.50",
              "status": "affected",
              "version": "V4.0.44",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions \u003e= V4.0.44 \u003c V4.0.50). Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        },
        {
          "cvssV4_0": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863: Incorrect Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-12T12:49:53.487Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-654798.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-50310",
    "datePublished": "2024-11-12T12:49:53.487Z",
    "dateReserved": "2024-10-22T05:31:43.835Z",
    "dateUpdated": "2024-11-12T16:08:37.035Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-50310\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-12T16:07:35.995670Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:h:siemens:simatic_cp_1543-1:-:*:*:*:*:*:*:*\"], \"vendor\": \"siemens\", \"product\": \"simatic_cp_1543-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"V4.0.44\", \"lessThan\": \"V4.0.50\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-12T16:08:30.642Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C\"}}, {\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 8.7, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N\"}}], \"affected\": [{\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1543-1 V4.0\", \"versions\": [{\"status\": \"affected\", \"version\": \"V4.0.44\", \"lessThan\": \"V4.0.50\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-654798.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions \u003e= V4.0.44 \u003c V4.0.50). Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-863\", \"description\": \"CWE-863: Incorrect Authorization\"}]}], \"providerMetadata\": {\"orgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"shortName\": \"siemens\", \"dateUpdated\": \"2024-11-12T12:49:53.487Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-50310\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-12T16:08:37.035Z\", \"dateReserved\": \"2024-10-22T05:31:43.835Z\", \"assignerOrgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"datePublished\": \"2024-11-12T12:49:53.487Z\", \"assignerShortName\": \"siemens\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2024-50310

Vulnerability from fkie_nvd - Published: 2024-11-12 13:15 - Updated: 2024-11-13 23:15

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/html/ssa-654798.html	Patch, Vendor Advisory

Impacted products

	Vendor	Product	Version
	siemens	simatic_cp_1543-1_firmware	*
	siemens	simatic_cp_1543-1	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:siemens:simatic_cp_1543-1_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2052BA0E-9603-47F0-BD09-129E226CE99B",
              "versionEndExcluding": "4.0.50",
              "versionStartIncluding": "4.0.44",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:simatic_cp_1543-1:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3FDE92FB-38C7-46E8-9208-BBD7872219D5",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions \u003e= V4.0.44 \u003c V4.0.50). Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (todas las versiones \u0026gt;= V4.0.44 \u0026lt; V4.0.50). Los dispositivos afectados no gestionan correctamente la autorizaci\u00f3n. Esto podr\u00eda permitir que un atacante remoto no autenticado obtenga acceso al sistema de archivos."
    }
  ],
  "id": "CVE-2024-50310",
  "lastModified": "2024-11-13T23:15:38.657",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "productcert@siemens.com",
        "type": "Secondary"
      }
    ],
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "NETWORK",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 8.7,
          "baseSeverity": "HIGH",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "NONE",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "HIGH",
          "vulnIntegrityImpact": "NONE",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "productcert@siemens.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-11-12T13:15:11.660",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-654798.html"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-863"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Secondary"
    }
  ]
}

CNVD-2024-44939

Vulnerability from cnvd - Published: 2024-11-14

Title

Siemens SIMATIC CP 1543-1授权错误漏洞

Description

SIMATIC CP 1543-1通信处理器将SIMATIC S7-1500控制器连接到以太网网络。它们提供了集成的安全功能，如防火墙、虚拟专用网（VPN），并支持其他具有数据加密的协议。 Siemens SIMATIC CP 1543-1存在授权错误漏洞，未经身份验证的远程攻击者可利用该漏洞访问文件系统。

Severity

高

Patch Name

Siemens SIMATIC CP 1543-1授权错误漏洞的补丁

Patch Description

SIMATIC CP 1543-1通信处理器将SIMATIC S7-1500控制器连接到以太网网络。它们提供了集成的安全功能，如防火墙、虚拟专用网（VPN），并支持其他具有数据加密的协议。 Siemens SIMATIC CP 1543-1存在授权错误漏洞，未经身份验证的远程攻击者可利用该漏洞访问文件系统。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://support.industry.siemens.com/cs/ww/en/view/109976120/

Reference

https://cert-portal.siemens.com/productcert/html/ssa-654798.html

Impacted products

Name
Siemens SIMATIC CP 1543-1 (6GK7543-1AX10-0XE0) >=4.0.44，<4.0.50

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-50310"
    }
  },
  "description": "SIMATIC CP 1543-1\u901a\u4fe1\u5904\u7406\u5668\u5c06SIMATIC S7-1500\u63a7\u5236\u5668\u8fde\u63a5\u5230\u4ee5\u592a\u7f51\u7f51\u7edc\u3002\u5b83\u4eec\u63d0\u4f9b\u4e86\u96c6\u6210\u7684\u5b89\u5168\u529f\u80fd\uff0c\u5982\u9632\u706b\u5899\u3001\u865a\u62df\u4e13\u7528\u7f51\uff08VPN\uff09\uff0c\u5e76\u652f\u6301\u5176\u4ed6\u5177\u6709\u6570\u636e\u52a0\u5bc6\u7684\u534f\u8bae\u3002\n\nSiemens SIMATIC CP 1543-1\u5b58\u5728\u6388\u6743\u9519\u8bef\u6f0f\u6d1e\uff0c\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u6587\u4ef6\u7cfb\u7edf\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://support.industry.siemens.com/cs/ww/en/view/109976120/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-44939",
  "openTime": "2024-11-14",
  "patchDescription": "SIMATIC CP 1543-1\u901a\u4fe1\u5904\u7406\u5668\u5c06SIMATIC S7-1500\u63a7\u5236\u5668\u8fde\u63a5\u5230\u4ee5\u592a\u7f51\u7f51\u7edc\u3002\u5b83\u4eec\u63d0\u4f9b\u4e86\u96c6\u6210\u7684\u5b89\u5168\u529f\u80fd\uff0c\u5982\u9632\u706b\u5899\u3001\u865a\u62df\u4e13\u7528\u7f51\uff08VPN\uff09\uff0c\u5e76\u652f\u6301\u5176\u4ed6\u5177\u6709\u6570\u636e\u52a0\u5bc6\u7684\u534f\u8bae\u3002\r\n\r\nSiemens SIMATIC CP 1543-1\u5b58\u5728\u6388\u6743\u9519\u8bef\u6f0f\u6d1e\uff0c\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u6587\u4ef6\u7cfb\u7edf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SIMATIC CP 1543-1\u6388\u6743\u9519\u8bef\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Siemens SIMATIC CP 1543-1 (6GK7543-1AX10-0XE0) \u003e=4.0.44\uff0c\u003c4.0.50"
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-654798.html",
  "serverity": "\u9ad8",
  "submitTime": "2024-11-13",
  "title": "Siemens SIMATIC CP 1543-1\u6388\u6743\u9519\u8bef\u6f0f\u6d1e"
}

CERTFR-2024-AVI-0968

Vulnerability from certfr_avis - Published: 2024-11-13 - Updated: 2024-11-13

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Siemens	N/A	SIMATIC WinCC V16 toutes versions pour la vulnérabilité CVE-2023-32736
Siemens	N/A	SIMATIC WinCC Unified V16 toutes versions pour la vulnérabilité CVE-2023-32736
Siemens	N/A	SIMATIC STEP 7 V17 versions antérieures à V17 Update 8
Siemens	N/A	TIA Portal Cloud V16 toutes versions pour la vulnérabilité CVE-2023-32736
Siemens	N/A	SIMATIC STEP 7 Safety V17 versions antérieures à V17 Update 8
Siemens	N/A	SIMATIC WinCC Unified V17 versions antérieures à V17 Update 8
Siemens	N/A	SIMATIC STEP 7 V16 toutes versions pour la vulnérabilité CVE-2023-32736
Siemens	N/A	SIMATIC WinCC V18 versions antérieures à V18 Update 5
Siemens	N/A	SIMATIC S7-PLCSIM V17 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2023-32736.
Siemens	N/A	SIMATIC STEP 7 Safety V16 toutes versions pour la vulnérabilité CVE-2023-32736
Siemens	N/A	TIA Portal Cloud V18 versions antérieures à V4.6.1.0
Siemens	N/A	SIMATIC S7-PLCSIM V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2023-32736.
Siemens	N/A	SIMATIC STEP 7 Safety V18 versions antérieures à V18 Update 5
Siemens	N/A	TIA Portal Cloud V17 versions antérieures à V4.6.0.1
Siemens	N/A	SCALANCE M-800 versions antérieures à V8.2
Siemens	N/A	SCALANCE S615 versions antérieures à V8.2
Siemens	N/A	SIMATIC WinCC Unified V18 versions antérieures à V18 Update 5
Siemens	N/A	SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) versions supérieures ou égales àV4.0.44 et versions antérieures à V4.0.50
Siemens	N/A	SIMATIC STEP 7 V18 versions antérieures à V18 Update 5
Siemens	N/A	SIMATIC WinCC V17 versions antérieures à V17 Update 8

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-354112	2024-11-12	vendor-advisory
Bulletin de sécurité Siemens SSA-654798	2024-11-12	vendor-advisory
Bulletin de sécurité Siemens SSA-871035	2024-11-12	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SIMATIC WinCC V16 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V16 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V17 versions ant\u00e9rieures \u00e0 V17 Update 8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V16 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V17 versions ant\u00e9rieures \u00e0 V17 Update 8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V17 versions ant\u00e9rieures \u00e0 V17 Update 8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V16 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V18 versions ant\u00e9rieures \u00e0 V18 Update 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V17 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V16 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V18 versions ant\u00e9rieures \u00e0 V4.6.1.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2023-32736.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V18 versions ant\u00e9rieures \u00e0 V18 Update 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V17 versions ant\u00e9rieures \u00e0 V4.6.0.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE M-800 versions ant\u00e9rieures \u00e0 V8.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE S615 versions ant\u00e9rieures \u00e0 V8.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V18 versions ant\u00e9rieures \u00e0 V18 Update 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) versions sup\u00e9rieures ou \u00e9gales \u00e0V4.0.44 et  versions ant\u00e9rieures \u00e0 V4.0.50",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V18 versions ant\u00e9rieures \u00e0 V18 Update 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V17 versions ant\u00e9rieures \u00e0 V17 Update 8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-5594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-5594"
    },
    {
      "name": "CVE-2023-32736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-32736"
    },
    {
      "name": "CVE-2023-49441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-49441"
    },
    {
      "name": "CVE-2024-50572",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50572"
    },
    {
      "name": "CVE-2021-3506",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-3506"
    },
    {
      "name": "CVE-2024-50560",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50560"
    },
    {
      "name": "CVE-2024-28882",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-28882"
    },
    {
      "name": "CVE-2024-50561",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50561"
    },
    {
      "name": "CVE-2024-26306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26306"
    },
    {
      "name": "CVE-2024-4603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
    },
    {
      "name": "CVE-2024-50557",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50557"
    },
    {
      "name": "CVE-2024-50310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50310"
    },
    {
      "name": "CVE-2024-50558",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50558"
    },
    {
      "name": "CVE-2024-4741",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
    },
    {
      "name": "CVE-2024-26925",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26925"
    },
    {
      "name": "CVE-2024-2511",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
    },
    {
      "name": "CVE-2024-50559",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50559"
    },
    {
      "name": "CVE-2023-28450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-28450"
    }
  ],
  "initial_release_date": "2024-11-13T00:00:00",
  "last_revision_date": "2024-11-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-0968",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Siemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-354112",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-354112.html"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-654798",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-654798.html"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-871035",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-871035.html"
    }
  ]
}

GHSA-84FJ-MC2G-VCQC

Vulnerability from github – Published: 2024-11-12 15:30 – Updated: 2024-11-12 15:30

Details

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.7 (High)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-50310"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-863"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-11-12T13:15:11Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions \u003e= V4.0.44 \u003c V4.0.50). Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem.",
  "id": "GHSA-84fj-mc2g-vcqc",
  "modified": "2024-11-12T15:30:43Z",
  "published": "2024-11-12T15:30:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50310"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-654798.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-50310 (GCVE-0-2024-50310)

FKIE_CVE-2024-50310

CNVD-2024-44939

CERTFR-2024-AVI-0968

Solutions

GHSA-84FJ-MC2G-VCQC

Tags

Sightings

Nomenclature