admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-47100.md
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

51 lines
7.4 KiB
Markdown
Raw Permalink Blame History

### [CVE-2024-47100](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47100)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201211C%20AC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201211C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201211C%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201212C%20AC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201212C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201212C%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201212FC%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201212FC%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201214C%20AC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201214C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201214C%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201214FC%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201214FC%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201215C%20AC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201215C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201215C%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201215FC%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201215FC%20DC%2FDC%2FRly&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%201217C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201212%20AC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201212%20DC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201212C%20DC%2FDC%2FDC%20RAIL&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201212C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214%20AC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214%20DC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214C%20DC%2FDC%2FDC%20RAIL&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214FC%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201214FC%20DC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201215%20AC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201215%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201215%20DC%2FDC%2FRLY&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201215C%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20S7-1200%20CPU%201215FC%20DC%2FDC%2FDC&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-352%3A%20Cross-Site%20Request%20Forgery%20(CSRF)&color=brightgreen)
### Description
A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0), SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0), SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0), SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0), SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-2XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-2XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-4XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-5XB0), SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-2XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0), SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0), SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0). The web interface of the affected devices is vulnerable to Cross-Site Request Forgery (CSRF) attacks. This could allow an unauthenticated attacker to change the CPU mode by tricking a legitimate and authenticated user with sufficient permissions on the target CPU to click on a malicious link.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Reference in New Issue View Git Blame Copy Permalink