Vulnerability-Lookup

CVE-2024-53832 (GCVE-0-2024-53832)

Vulnerability from cvelistv5 – Published: 2024-12-10 13:54 – Updated: 2025-11-03 20:48

Summary

A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V05.30). The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the secure element authentication, and then use the secure element as an oracle to decrypt all encrypted update files.

Severity ?

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5.1 (Medium)


                        
                          CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

CWE

CWE-522 - Insufficiently Protected Credentials

Assigner

siemens

References

URL

	Vendor	Product	Version
	Siemens	CPCI85 Central Processing/Communication	Affected: 0 , < V05.30 (custom)

CNVD-2024-47915

Vulnerability from cnvd - Published: 2024-12-12

Title

Siemens SICAM A8000 CP-8031和CP-8050固件解密漏洞

Description

SICAM A8000 RTU（远程终端单元）是用于所有能源供应领域的远程控制和自动化应用的模块化设备。 Siemens SICAM A8000 CP-8031和CP-8050存在固件解密漏洞，该漏洞是由于受影响的设备包含一个通过未加密的SPI总线连接的安全元件。攻击者可利用该漏洞观察用于安全元件身份验证的密码，然后将安全元件用作预言机来解密所有加密的更新文件。

Severity

中

Patch Name

Siemens SICAM A8000 CP-8031和CP-8050固件解密漏洞的补丁

Patch Description

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/html/ssa-128393.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-128393.html

Impacted products

Name
Siemens CPCI85 Central Processing/Communication <V05.30

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-53832"
    }
  },
  "description": "SICAM A8000 RTU\uff08\u8fdc\u7a0b\u7ec8\u7aef\u5355\u5143\uff09\u662f\u7528\u4e8e\u6240\u6709\u80fd\u6e90\u4f9b\u5e94\u9886\u57df\u7684\u8fdc\u7a0b\u63a7\u5236\u548c\u81ea\u52a8\u5316\u5e94\u7528\u7684\u6a21\u5757\u5316\u8bbe\u5907\u3002\n\nSiemens SICAM A8000 CP-8031\u548cCP-8050\u5b58\u5728\u56fa\u4ef6\u89e3\u5bc6\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u5305\u542b\u4e00\u4e2a\u901a\u8fc7\u672a\u52a0\u5bc6\u7684SPI\u603b\u7ebf\u8fde\u63a5\u7684\u5b89\u5168\u5143\u4ef6\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u89c2\u5bdf\u7528\u4e8e\u5b89\u5168\u5143\u4ef6\u8eab\u4efd\u9a8c\u8bc1\u7684\u5bc6\u7801\uff0c\u7136\u540e\u5c06\u5b89\u5168\u5143\u4ef6\u7528\u4f5c\u9884\u8a00\u673a\u6765\u89e3\u5bc6\u6240\u6709\u52a0\u5bc6\u7684\u66f4\u65b0\u6587\u4ef6\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/html/ssa-128393.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-47915",
  "openTime": "2024-12-12",
  "patchDescription": "SICAM A8000 RTU\uff08\u8fdc\u7a0b\u7ec8\u7aef\u5355\u5143\uff09\u662f\u7528\u4e8e\u6240\u6709\u80fd\u6e90\u4f9b\u5e94\u9886\u57df\u7684\u8fdc\u7a0b\u63a7\u5236\u548c\u81ea\u52a8\u5316\u5e94\u7528\u7684\u6a21\u5757\u5316\u8bbe\u5907\u3002\r\n\r\nSiemens SICAM A8000 CP-8031\u548cCP-8050\u5b58\u5728\u56fa\u4ef6\u89e3\u5bc6\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u5305\u542b\u4e00\u4e2a\u901a\u8fc7\u672a\u52a0\u5bc6\u7684SPI\u603b\u7ebf\u8fde\u63a5\u7684\u5b89\u5168\u5143\u4ef6\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u89c2\u5bdf\u7528\u4e8e\u5b89\u5168\u5143\u4ef6\u8eab\u4efd\u9a8c\u8bc1\u7684\u5bc6\u7801\uff0c\u7136\u540e\u5c06\u5b89\u5168\u5143\u4ef6\u7528\u4f5c\u9884\u8a00\u673a\u6765\u89e3\u5bc6\u6240\u6709\u52a0\u5bc6\u7684\u66f4\u65b0\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SICAM A8000 CP-8031\u548cCP-8050\u56fa\u4ef6\u89e3\u5bc6\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Siemens CPCI85 Central Processing/Communication \u003cV05.30"
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-128393.html",
  "serverity": "\u4e2d",
  "submitTime": "2024-12-11",
  "title": "Siemens SICAM A8000 CP-8031\u548cCP-8050\u56fa\u4ef6\u89e3\u5bc6\u6f0f\u6d1e"
}

CERTFR-2024-AVI-1062

Vulnerability from certfr_avis - Published: 2024-12-11 - Updated: 2024-12-11

De multiples vulnérabilités ont été découvertes dans les produits Siemens. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un contournement de la politique de sécurité et un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Siemens	N/A	SIMATIC STEP 7 V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC S7-PLCSIM V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Safety ES V17 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Soft Starter ES V18 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	TIA Portal Cloud V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC Unified V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 Safety V19 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIRIUS Safety ES V18 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	TIA Portal Cloud V19 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	TIA Portal Cloud V18 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC STEP 7 V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 V17 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC STEP 7 V19 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIRIUS Soft Starter ES V18 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC Unified V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	SIMATIC WinCC V18 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIRIUS Soft Starter ES V17 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC S7-PLCSIM V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 Safety V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Soft Starter ES V19 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	TIA Portal Cloud V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 Safety V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	TIA Portal Cloud V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC V19 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC Unified V18 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIRIUS Safety ES V19 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Safety ES V19 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC Unified PC Runtime V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC S7-PLCSIM V17 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	SIMATIC STEP 7 V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC Unified V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC Unified PC Runtime V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC V17 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC V17 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC WinCC Unified V17 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	SIRIUS Soft Starter ES V17 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC S7-PLCSIM V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	SIMATIC STEP 7 Safety V19 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Soft Starter ES V19 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIRIUS Safety ES V18 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC Unified V19 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIRIUS Safety ES V17 (TIA Portal) toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	CPCI85 Central Processing/Communication versions antérieures à V05.30
Siemens	N/A	SIMATIC STEP 7 V18 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC STEP 7 Safety V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 Safety V17 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.
Siemens	N/A	TIA Portal Cloud V17 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	SIMATIC WinCC Unified V18 toutes versions pour la vulnérabilité CVE-2024-52051
Siemens	N/A	SIMATIC STEP 7 Safety V18 toutes versions pour la vulnérabilité CVE-2024-49849
Siemens	N/A	TIA Portal Cloud V16 toutes versions. L'éditeur indique que le produit ne bénéficiera pas de correctif de sécurité pour la vulnérabilité CVE-2024-49849.

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-800126	2024-12-10	vendor-advisory
Bulletin de sécurité Siemens SSA-392859	2024-12-10	vendor-advisory
Bulletin de sécurité Siemens SSA-128393	2024-12-10	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SIMATIC STEP 7 V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V17 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V18 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V18 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V18 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V17 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V19 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V19 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V19 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified PC Runtime V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V17 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified PC Runtime V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V17 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC S7-PLCSIM V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Soft Starter ES V19 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V18 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V19 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIRIUS Safety ES V17 (TIA Portal) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "CPCI85 Central Processing/Communication versions ant\u00e9rieures \u00e0 V05.30",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V17 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC WinCC Unified V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-52051",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIMATIC STEP 7 Safety V18 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Portal Cloud V16 toutes versions. L\u0027\u00e9diteur indique que le produit ne b\u00e9n\u00e9ficiera pas de correctif de s\u00e9curit\u00e9 pour la vuln\u00e9rabilit\u00e9 CVE-2024-49849.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-52051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-52051"
    },
    {
      "name": "CVE-2024-53832",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-53832"
    },
    {
      "name": "CVE-2024-49849",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-49849"
    }
  ],
  "initial_release_date": "2024-12-11T00:00:00",
  "last_revision_date": "2024-12-11T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-1062",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-12-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Siemens. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": "2024-12-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-800126",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-800126.html"
    },
    {
      "published_at": "2024-12-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-392859",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-392859.html"
    },
    {
      "published_at": "2024-12-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-128393",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-128393.html"
    }
  ]
}

FKIE_CVE-2024-53832

Vulnerability from fkie_nvd - Published: 2024-12-10 14:30 - Updated: 2025-11-03 21:17

Severity ?

4.6 (Medium) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/html/ssa-128393.html
	af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2025/Feb/19

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions \u003c V05.30). The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the secure element authentication, and then use the secure element as an oracle to decrypt all encrypted update files."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en CPCI85 Central Processing/Communication (Todas las versiones anteriores a V05.30). Los dispositivos afectados contienen un elemento seguro que est\u00e1 conectado a trav\u00e9s de un bus SPI no cifrado. Esto podr\u00eda permitir que un atacante con acceso f\u00edsico al bus SPI observe la contrase\u00f1a utilizada para la autenticaci\u00f3n del elemento seguro y luego utilice el elemento seguro como un or\u00e1culo para descifrar todos los archivos de actualizaci\u00f3n cifrados."
    }
  ],
  "id": "CVE-2024-53832",
  "lastModified": "2025-11-03T21:17:47.673",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "PHYSICAL",
          "availabilityImpact": "NONE",
          "baseScore": 4.6,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 0.9,
        "impactScore": 3.6,
        "source": "productcert@siemens.com",
        "type": "Secondary"
      }
    ],
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "PHYSICAL",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 5.1,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "NONE",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "HIGH",
          "vulnIntegrityImpact": "NONE",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "productcert@siemens.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-12-10T14:30:46.853",
  "references": [
    {
      "source": "productcert@siemens.com",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-128393.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/fulldisclosure/2025/Feb/19"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-522"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Secondary"
    }
  ]
}

GHSA-PG55-3WRH-JWH5

Vulnerability from github – Published: 2024-12-10 15:32 – Updated: 2025-11-03 21:31

Details

Severity ?

4.6 (Medium)


                  
                    CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5.1 (Medium)


                  
                    CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-53832"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-522"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-12-10T14:30:46Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions \u003c V05.30). The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the secure element authentication, and then use the secure element as an oracle to decrypt all encrypted update files.",
  "id": "GHSA-pg55-3wrh-jwh5",
  "modified": "2025-11-03T21:31:42Z",
  "published": "2024-12-10T15:32:31Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53832"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-128393.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2025/Feb/19"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-53832 (GCVE-0-2024-53832)

CNVD-2024-47915

CERTFR-2024-AVI-1062

Solutions

FKIE_CVE-2024-53832

GHSA-PG55-3WRH-JWH5

Tags

Sightings

Nomenclature