admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2025-01-14 11:00:55 +00:00
parent 34f9c84702
commit d099f77642
No known key found for this signature in database
GPG Key ID: BC5FD8F2443B23B7
16 changed files with 2511 additions and 1299 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

381
2022/34xxx/CVE-2022-34821.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (All versions < V7.2), RUGGEDCOM RM1224 LTE(4G) NAM (All versions < V7.2), SCALANCE M804PB (All versions < V7.2), SCALANCE M812-1 ADSL-Router (Annex A) (All versions < V7.2), SCALANCE M812-1 ADSL-Router (Annex B) (All versions < V7.2), SCALANCE M816-1 ADSL-Router (Annex A) (All versions < V7.2), SCALANCE M816-1 ADSL-Router (Annex B) (All versions < V7.2), SCALANCE M826-2 SHDSL-Router (All versions < V7.2), SCALANCE M874-2 (All versions < V7.2), SCALANCE M874-3 (All versions < V7.2), SCALANCE M876-3 (EVDO) (All versions < V7.2), SCALANCE M876-3 (ROK) (All versions < V7.2), SCALANCE M876-4 (All versions < V7.2), SCALANCE M876-4 (EU) (All versions < V7.2), SCALANCE M876-4 (NAM) (All versions < V7.2), SCALANCE MUM853-1 (EU) (All versions < V7.2), SCALANCE MUM856-1 (EU) (All versions < V7.2), SCALANCE MUM856-1 (RoW) (All versions < V7.2), SCALANCE S615 (All versions < V7.2), SCALANCE S615 EEC (All versions < V7.2), SCALANCE SC622-2C (All versions < V2.3), SCALANCE SC622-2C (All versions >= V2.3 < V3.0), SCALANCE SC626-2C (All versions < V2.3), SCALANCE SC626-2C (All versions >= V2.3 < V3.0), SCALANCE SC632-2C (All versions < V2.3), SCALANCE SC632-2C (All versions >= V2.3 < V3.0), SCALANCE SC636-2C (All versions < V2.3), SCALANCE SC636-2C (All versions >= V2.3 < V3.0), SCALANCE SC642-2C (All versions < V2.3), SCALANCE SC642-2C (All versions >= V2.3 < V3.0), SCALANCE SC646-2C (All versions < V2.3), SCALANCE SC646-2C (All versions >= V2.3 < V3.0), SCALANCE WAM763-1 (All versions), SCALANCE WAM766-1 (EU) (All versions), SCALANCE WAM766-1 (US) (All versions), SCALANCE WAM766-1 EEC (EU) (All versions), SCALANCE WAM766-1 EEC (US) (All versions), SCALANCE WUM763-1 (All versions), SCALANCE WUM763-1 (All versions), SCALANCE WUM766-1 (EU) (All versions), SCALANCE WUM766-1 (US) (All versions), SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All versions < V3.3.46), SIMATIC CP 1243-7 LTE US (All versions < V3.3.46), SIMATIC CP 1243-8 IRC (All versions < V3.3.46), SIMATIC CP 1542SP-1 IRC (All versions >= V2.0 < V2.2.28), SIMATIC CP 1543-1 (All versions < V3.0.22), SIMATIC CP 1543SP-1 (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). By injecting code to specific configuration options for OpenVPN, an attacker could execute arbitrary code with elevated privileges." "value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2), SCALANCE M804PB (6GK5804-0AP00-2AA2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2), SCALANCE M874-2 (6GK5874-2AA00-2AA2), SCALANCE M874-3 (6GK5874-3AA00-2AA2), SCALANCE M876-3 (6GK5876-3AA02-2BA2), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2), SCALANCE M876-4 (6GK5876-4AA10-2BA2), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2), SCALANCE SC622-2C (6GK5622-2GS00-2AC2), SCALANCE SC622-2C (6GK5622-2GS00-2AC2), SCALANCE SC626-2C (6GK5626-2GS00-2AC2), SCALANCE SC626-2C (6GK5626-2GS00-2AC2), SCALANCE SC632-2C (6GK5632-2GS00-2AC2), SCALANCE SC632-2C (6GK5632-2GS00-2AC2), SCALANCE SC636-2C (6GK5636-2GS00-2AC2), SCALANCE SC636-2C (6GK5636-2GS00-2AC2), SCALANCE SC642-2C (6GK5642-2GS00-2AC2), SCALANCE SC642-2C (6GK5642-2GS00-2AC2), SCALANCE SC646-2C (6GK5646-2GS00-2AC2), SCALANCE SC646-2C (6GK5646-2GS00-2AC2), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0), SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0), SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0), SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0), SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0), SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0), SIMATIC CP 1542SP-1 IRC (6GK7542-6VX00-0XE0), SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0), SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (6AG2542-6VX00-4XE0), SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0), SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0), SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0), SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0), SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0). By injecting code to specific configuration options for OpenVPN, an attacker could execute arbitrary code with elevated privileges."
} }
] ]
}, },
@ -40,8 +40,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -51,8 +52,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -62,52 +64,33 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE M812-1 ADSL-Router (Annex A)", "product_name": "SCALANCE M812-1 ADSL-Router",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE M812-1 ADSL-Router (Annex B)", "product_name": "SCALANCE M816-1 ADSL-Router",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
} "version_value": "V7.2"
]
}
},
{
"product_name": "SCALANCE M816-1 ADSL-Router (Annex A)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions < V7.2"
}
]
}
},
{
"product_name": "SCALANCE M816-1 ADSL-Router (Annex B)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions < V7.2"
} }
] ]
} }
@ -117,8 +100,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -128,8 +112,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -139,19 +124,21 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE M876-3 (EVDO)", "product_name": "SCALANCE M876-3",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -161,8 +148,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -172,8 +160,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -183,8 +172,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -194,8 +184,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -205,8 +196,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -216,8 +208,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -227,30 +220,33 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE S615", "product_name": "SCALANCE S615 EEC LAN-Router",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE S615 EEC", "product_name": "SCALANCE S615 LAN-Router",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V7.2" "version_name": "0",
"version_value": "V7.2"
} }
] ]
} }
@ -260,12 +256,14 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
} }
] ]
} }
@ -275,12 +273,14 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
} }
] ]
} }
@ -290,12 +290,14 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
} }
] ]
} }
@ -305,12 +307,14 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
} }
] ]
} }
@ -320,12 +324,14 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
} }
] ]
} }
@ -335,12 +341,26 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions < V2.3" "version_name": "0",
"version_value": "V2.3"
}, },
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.3 < V3.0" "version_name": "V2.3",
"version_value": "V3.0"
}
]
}
},
{
"product_name": "SCALANCE WAB762-1",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -350,19 +370,57 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 (EU)", "product_name": "SCALANCE WAM763-1 (ME)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM763-1 (US)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1 (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -372,19 +430,33 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 EEC (EU)", "product_name": "SCALANCE WAM766-1 EEC",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1 EEC (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -394,8 +466,33 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1 iFeatures",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -405,34 +502,57 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
}, "version_value": "V3.0.0"
{
"version_affected": "=",
"version_value": "All versions"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (EU)", "product_name": "SCALANCE WUM763-1 (US)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (US)", "product_name": "SCALANCE WUM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUM766-1 (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUM766-1 (USA)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -497,8 +617,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.0 < V2.2.28" "version_name": "V2.0",
"version_value": "V2.2.28"
} }
] ]
} }
@ -519,8 +640,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.0 < V2.2.28" "version_name": "V2.0",
"version_value": "V2.2.28"
} }
] ]
} }
@ -530,8 +652,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.0 < V2.2.28" "version_name": "V2.0",
"version_value": "V2.2.28"
} }
] ]
} }
@ -541,8 +664,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.0 < V2.2.28" "version_name": "V2.0",
"version_value": "V2.2.28"
} }
] ]
} }
@ -552,8 +676,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions >= V2.0 < V2.2.28" "version_name": "V2.0",
"version_value": "V2.2.28"
} }
] ]
} }
@ -619,6 +744,16 @@
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf",
"refsource": "MISC", "refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf" "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-517377.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-517377.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-413565.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-413565.html"
} }
] ]
}, },
@ -626,7 +761,7 @@
"cvss": [ "cvss": [
{ {
"version": "3.1", "version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"baseScore": 7.6, "baseScore": 7.6,
"baseSeverity": "HIGH" "baseSeverity": "HIGH"
} }

941
2022/46xxx/CVE-2022-46140.json
View File

File diff suppressed because it is too large Load Diff

971
2022/46xxx/CVE-2022-46142.json
View File

File diff suppressed because it is too large Load Diff

124
2022/46xxx/CVE-2022-46144.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in SCALANCE SC622-2C (6GK5622-2GS00-2AC2) (All versions < V2.3), SCALANCE SC622-2C (6GK5622-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC626-2C (6GK5626-2GS00-2AC2) (All versions < V2.3), SCALANCE SC626-2C (6GK5626-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC632-2C (6GK5632-2GS00-2AC2) (All versions < V2.3), SCALANCE SC632-2C (6GK5632-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC636-2C (6GK5636-2GS00-2AC2) (All versions < V2.3), SCALANCE SC636-2C (6GK5636-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC642-2C (6GK5642-2GS00-2AC2) (All versions < V2.3), SCALANCE SC642-2C (6GK5642-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC646-2C (6GK5646-2GS00-2AC2) (All versions < V2.3), SCALANCE SC646-2C (6GK5646-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) (All versions), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) (All versions), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-2AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) (All versions), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) (All versions). Affected devices do not properly process CLI commands after a user forcefully quitted the SSH connection. This could allow an authenticated attacker to make the CLI via SSH or serial interface irresponsive." "value": "A vulnerability has been identified in SCALANCE SC622-2C (6GK5622-2GS00-2AC2) (All versions < V2.3), SCALANCE SC622-2C (6GK5622-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC626-2C (6GK5626-2GS00-2AC2) (All versions < V2.3), SCALANCE SC626-2C (6GK5626-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC632-2C (6GK5632-2GS00-2AC2) (All versions < V2.3), SCALANCE SC632-2C (6GK5632-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC636-2C (6GK5636-2GS00-2AC2) (All versions < V2.3), SCALANCE SC636-2C (6GK5636-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC642-2C (6GK5642-2GS00-2AC2) (All versions < V2.3), SCALANCE SC642-2C (6GK5642-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE SC646-2C (6GK5646-2GS00-2AC2) (All versions < V2.3), SCALANCE SC646-2C (6GK5646-2GS00-2AC2) (All versions >= V2.3 < V3.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V2.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V2.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V2.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V2.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V2.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V2.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V2.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V2.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V2.0.0). Affected devices do not properly process CLI commands after a user forcefully quitted the SSH connection. This could allow an authenticated attacker to make the CLI via SSH or serial interface irresponsive."
} }
] ]
}, },
@ -137,18 +137,6 @@
] ]
} }
}, },
{
"product_name": "SCALANCE WAB762-1",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{ {
"product_name": "SCALANCE WAM763-1", "product_name": "SCALANCE WAM763-1",
"version": { "version": {
@ -156,55 +144,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM763-1 (ME)", "product_name": "SCALANCE WAM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM763-1 (US)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1 (EU)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1 (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
} }
] ]
} }
@ -216,31 +168,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 EEC (EU)", "product_name": "SCALANCE WAM766-1 EEC",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
}
]
}
},
{
"product_name": "SCALANCE WAM766-1 EEC (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
} }
] ]
} }
@ -252,19 +192,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
} }
] ]
} }
@ -276,55 +204,31 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM763-1 (US)", "product_name": "SCALANCE WUM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (EU)", "product_name": "SCALANCE WUM766-1 (USA)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUM766-1 (ME)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{
"product_name": "SCALANCE WUM766-1 (US)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
} }
] ]
} }
@ -358,7 +262,7 @@
"cvss": [ "cvss": [
{ {
"version": "3.1", "version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 6.5, "baseScore": 6.5,
"baseSeverity": "MEDIUM" "baseSeverity": "MEDIUM"
} }

14
2023/32xxx/CVE-2023-32736.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-PLCSIM V17 (All versions), SIMATIC STEP 7 Safety V16 (All versions), SIMATIC STEP 7 Safety V17 (All versions < V17 Update 8), SIMATIC STEP 7 Safety V18 (All versions < V18 Update 5), SIMATIC STEP 7 V16 (All versions), SIMATIC STEP 7 V17 (All versions < V17 Update 8), SIMATIC STEP 7 V18 (All versions < V18 Update 5), SIMATIC WinCC Unified V16 (All versions), SIMATIC WinCC Unified V17 (All versions < V17 Update 8), SIMATIC WinCC Unified V18 (All versions < V18 Update 5), SIMATIC WinCC V16 (All versions), SIMATIC WinCC V17 (All versions < V17 Update 8), SIMATIC WinCC V18 (All versions < V18 Update 5), SIMOCODE ES V16 (All versions), SIMOCODE ES V17 (All versions < V17 Update 8), SIMOCODE ES V18 (All versions), SIMOTION SCOUT TIA V5.4 SP1 (All versions), SIMOTION SCOUT TIA V5.4 SP3 (All versions), SIMOTION SCOUT TIA V5.5 SP1 (All versions), SINAMICS Startdrive V16 (All versions), SINAMICS Startdrive V17 (All versions), SINAMICS Startdrive V18 (All versions), SIRIUS Safety ES V17 (All versions < V17 Update 8), SIRIUS Safety ES V18 (All versions), SIRIUS Soft Starter ES V17 (All versions < V17 Update 8), SIRIUS Soft Starter ES V18 (All versions), TIA Portal Cloud V16 (All versions), TIA Portal Cloud V17 (All versions < V4.6.0.1), TIA Portal Cloud V18 (All versions < V4.6.1.0). Affected products do not properly sanitize user-controllable input when parsing user settings. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application." "value": "A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-PLCSIM V17 (All versions), SIMATIC STEP 7 Safety V16 (All versions), SIMATIC STEP 7 Safety V17 (All versions < V17 Update 8), SIMATIC STEP 7 Safety V18 (All versions < V18 Update 5), SIMATIC STEP 7 V16 (All versions), SIMATIC STEP 7 V17 (All versions < V17 Update 8), SIMATIC STEP 7 V18 (All versions < V18 Update 5), SIMATIC WinCC Unified V16 (All versions), SIMATIC WinCC Unified V17 (All versions < V17 Update 8), SIMATIC WinCC Unified V18 (All versions < V18 SP5), SIMATIC WinCC V16 (All versions), SIMATIC WinCC V17 (All versions < V17 Update 8), SIMATIC WinCC V18 (All versions < V18 SP5), SIMOCODE ES V16 (All versions), SIMOCODE ES V17 (All versions < V17 Update 8), SIMOCODE ES V18 (All versions), SIMOTION SCOUT TIA V5.4 SP1 (All versions), SIMOTION SCOUT TIA V5.4 SP3 (All versions), SIMOTION SCOUT TIA V5.5 SP1 (All versions), SINAMICS Startdrive V16 (All versions), SINAMICS Startdrive V17 (All versions), SINAMICS Startdrive V18 (All versions), SIRIUS Safety ES V17 (TIA Portal) (All versions < V17 Update 8), SIRIUS Safety ES V18 (TIA Portal) (All versions), SIRIUS Soft Starter ES V17 (TIA Portal) (All versions < V17 Update 8), SIRIUS Soft Starter ES V18 (TIA Portal) (All versions), TIA Portal Cloud V16 (All versions), TIA Portal Cloud V17 (All versions < V4.6.0.1), TIA Portal Cloud V18 (All versions < V4.6.1.0). Affected products do not properly sanitize user-controllable input when parsing user settings. This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application."
} }
] ]
}, },
@ -162,7 +162,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "V18 Update 5" "version_value": "V18 SP5"
} }
] ]
} }
@ -198,7 +198,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "V18 Update 5" "version_value": "V18 SP5"
} }
] ]
} }
@ -312,7 +312,7 @@
} }
}, },
{ {
"product_name": "SIRIUS Safety ES V17", "product_name": "SIRIUS Safety ES V17 (TIA Portal)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
@ -324,7 +324,7 @@
} }
}, },
{ {
"product_name": "SIRIUS Safety ES V18", "product_name": "SIRIUS Safety ES V18 (TIA Portal)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
@ -336,7 +336,7 @@
} }
}, },
{ {
"product_name": "SIRIUS Soft Starter ES V17", "product_name": "SIRIUS Soft Starter ES V17 (TIA Portal)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
@ -348,7 +348,7 @@
} }
}, },
{ {
"product_name": "SIRIUS Soft Starter ES V18", "product_name": "SIRIUS Soft Starter ES V18 (TIA Portal)",
"version": { "version": {
"version_data": [ "version_data": [
{ {

56
2023/44xxx/CVE-2023-44317.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V7.2.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V7.2.2), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V7.2.2), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V7.2.2), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V7.2.2), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V7.2.2), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V7.2.2), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V7.2.2), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V7.2.2), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V7.2.2), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V7.2.2), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V7.2.2), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V7.2.2), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V7.2.2), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V7.2.2), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) (All versions), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) (All versions), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-2AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) (All versions), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) (All versions). Affected products do not properly validate the content of uploaded X509 certificates which could allow an attacker with administrative privileges to execute arbitrary code on the device." "value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V7.2.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V7.2.2), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V7.2.2), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V7.2.2), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V7.2.2), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V7.2.2), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V7.2.2), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V7.2.2), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V7.2.2), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V7.2.2), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V7.2.2), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V7.2.2), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V7.2.2), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V7.2.2), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V7.2.2), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V7.2.2), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions < V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions < V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions < V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions < V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V3.0.0). Affected products do not properly validate the content of uploaded X509 certificates which could allow an attacker with administrative privileges to execute arbitrary code on the device."
} }
] ]
}, },
@ -258,7 +258,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -270,7 +270,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -282,7 +282,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -294,19 +294,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 (EU)", "product_name": "SCALANCE WAM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -318,7 +318,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -330,19 +330,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 EEC (EU)", "product_name": "SCALANCE WAM766-1 EEC",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -354,7 +354,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -366,7 +366,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -378,7 +378,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1 iFeatures",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -390,7 +402,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -402,19 +414,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (EU)", "product_name": "SCALANCE WUM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -426,19 +438,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (US)", "product_name": "SCALANCE WUM766-1 (USA)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -487,7 +499,7 @@
"cvss": [ "cvss": [
{ {
"version": "3.1", "version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2, "baseScore": 7.2,
"baseSeverity": "HIGH" "baseSeverity": "HIGH"
} }

56
2023/44xxx/CVE-2023-44319.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.0), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.0), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.0), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.0), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.0), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V8.0), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.0), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.0), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.0), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.0), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.0), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.0), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.0), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.0), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) (All versions), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) (All versions), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-2AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) (All versions), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) (All versions). Affected devices use a weak checksum algorithm to protect the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges or an attacker that tricks a legitimate administrator to upload a modified configuration file to change the configuration of an affected device." "value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.0), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.0), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.0), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.0), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.0), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V8.0), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.0), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.0), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.0), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.0), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.0), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.0), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.0), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.0), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions < V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions < V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions < V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions < V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V3.0.0). Affected devices use a weak checksum algorithm to protect the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges or an attacker that tricks a legitimate administrator to upload a modified configuration file to change the configuration of an affected device."
} }
] ]
}, },
@ -258,7 +258,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -270,7 +270,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -282,7 +282,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -294,19 +294,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 (EU)", "product_name": "SCALANCE WAM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -318,7 +318,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -330,19 +330,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 EEC (EU)", "product_name": "SCALANCE WAM766-1 EEC",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -354,7 +354,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -366,7 +366,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -378,7 +378,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1 iFeatures",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -390,7 +402,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -402,19 +414,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (EU)", "product_name": "SCALANCE WUM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -426,19 +438,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (US)", "product_name": "SCALANCE WUM766-1 (USA)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -487,7 +499,7 @@
"cvss": [ "cvss": [
{ {
"version": "3.1", "version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"baseScore": 4.9, "baseScore": 4.9,
"baseSeverity": "MEDIUM" "baseSeverity": "MEDIUM"
} }

56
2023/44xxx/CVE-2023-44374.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.0), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.0), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.0), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.0), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.0), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.0), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.0), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.0), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.0), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.0), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.0), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.0), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.0), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) (All versions), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) (All versions), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions), SCALANCE WUB762-1 (6GK5762-1AJ00-2AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) (All versions), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) (All versions). Affected devices allow to change the password, but insufficiently check which password is to be changed. With this an authenticated attacker could, under certain conditions, be able to change the password of another, potential admin user allowing her to escalate her privileges." "value": "A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.0), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.0), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.0), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.0), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.0), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.0), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.0), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.0), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.0), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.0), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.0), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.0), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.0), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions < V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions < V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions < V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions < V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V3.0.0). Affected devices allow to change the password, but insufficiently check which password is to be changed. With this an authenticated attacker could, under certain conditions, be able to change the password of another, potential admin user, which could allow to escalate privileges."
} }
] ]
}, },
@ -246,7 +246,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -258,7 +258,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -270,7 +270,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -282,19 +282,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 (EU)", "product_name": "SCALANCE WAM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -306,7 +306,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -318,19 +318,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WAM766-1 EEC (EU)", "product_name": "SCALANCE WAM766-1 EEC",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -342,7 +342,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -354,7 +354,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -366,7 +366,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
}
]
}
},
{
"product_name": "SCALANCE WUB762-1 iFeatures",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V3.0.0"
} }
] ]
} }
@ -378,7 +390,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -390,19 +402,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (EU)", "product_name": "SCALANCE WUM766-1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -414,19 +426,19 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
}, },
{ {
"product_name": "SCALANCE WUM766-1 (US)", "product_name": "SCALANCE WUM766-1 (USA)",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V3.0.0"
} }
] ]
} }
@ -470,7 +482,7 @@
"cvss": [ "cvss": [
{ {
"version": "3.1", "version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"baseScore": 6.5, "baseScore": 6.5,
"baseSeverity": "MEDIUM" "baseSeverity": "MEDIUM"
} }

6
2023/49xxx/CVE-2023-49069.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.17.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.7 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.6 (All versions < V10.6.16 only if the basic authentication mechanism is used by the application), Mendix Runtime V8 (All versions < V8.18.33 only if the basic authentication mechanism is used by the application), Mendix Runtime V9 (All versions < V9.24.31 only if the basic authentication mechanism is used by the application). The authentication mechanism of affected applications contains an observable response discrepancy vulnerability when validating usernames. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames." "value": "A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.17.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.11 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.6 (All versions < V10.6.19 only if the basic authentication mechanism is used by the application), Mendix Runtime V8 (All versions < V8.18.33 only if the basic authentication mechanism is used by the application), Mendix Runtime V9 (All versions < V9.24.31 only if the basic authentication mechanism is used by the application). The authentication mechanism of affected applications contains an observable response discrepancy vulnerability when validating usernames. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames."
} }
] ]
}, },
@ -54,7 +54,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "V10.12.7" "version_value": "V10.12.11"
} }
] ]
} }
@ -66,7 +66,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "V10.6.16" "version_value": "V10.6.19"
} }
] ]
} }

7
2023/50xxx/CVE-2023-50821.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC04), SIMATIC WinCC Runtime Professional V17 (All versions), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 1), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 16), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5). The affected products do not properly validate the input provided in the login dialog box. An attacker could leverage this vulnerability to cause a persistent denial of service condition." "value": "A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC04), SIMATIC WinCC Runtime Professional V17 (All versions < V17 Update 8), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 1), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 16), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5). The affected products do not properly validate the input provided in the login dialog box. An attacker could leverage this vulnerability to cause a persistent denial of service condition."
} }
] ]
}, },
@ -52,8 +52,9 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_affected": "=", "version_affected": "<",
"version_value": "All versions" "version_name": "0",
"version_value": "V17 Update 8"
} }
] ]
} }

28
2024/33xxx/CVE-2024-33698.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in Opcenter Execution Foundation (All versions), Opcenter Quality (All versions), Opcenter RDL (All versions), SIMATIC Information Server 2022 (All versions), SIMATIC Information Server 2024 (All versions), SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versions), SINEC NMS (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 5), Totally Integrated Automation Portal (TIA Portal) V19 (All versions < V19 Update 3). Affected products contain a heap-based buffer overflow vulnerability in the integrated UMC component. This could allow an unauthenticated remote attacker to execute arbitrary code." "value": "A vulnerability has been identified in Opcenter Execution Foundation (All versions), Opcenter Quality (All versions), Opcenter RDL (All versions), SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versions < V5.0 Update 1), SINEC NMS (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 5), Totally Integrated Automation Portal (TIA Portal) V19 (All versions < V19 Update 3). Affected products contain a heap-based buffer overflow vulnerability in the integrated UMC component. This could allow an unauthenticated remote attacker to execute arbitrary code."
} }
] ]
}, },
@ -71,30 +71,6 @@
] ]
} }
}, },
{
"product_name": "SIMATIC Information Server 2022",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{
"product_name": "SIMATIC Information Server 2024",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{ {
"product_name": "SIMATIC PCS neo V4.0", "product_name": "SIMATIC PCS neo V4.0",
"version": { "version": {
@ -126,7 +102,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V5.0 Update 1"
} }
] ]
} }

10
2024/35xxx/CVE-2024-35783.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information Server 2020 (All versions), SIMATIC Information Server 2022 (All versions), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC06), SIMATIC Process Historian 2020 (All versions), SIMATIC Process Historian 2022 (All versions), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 5), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 3), SIMATIC WinCC V7.4 (All versions), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 18), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5). The affected products run their DB server with elevated privileges which could allow an authenticated attacker to execute arbitrary OS commands with administrative privileges." "value": "A vulnerability has been identified in SIMATIC BATCH V9.1 (All versions), SIMATIC Information Server 2020 (All versions < V2020 SP2 Update 5), SIMATIC Information Server 2022 (All versions < V2022 SP1 Update 2), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC06), SIMATIC Process Historian 2020 (All versions < V2020 SP2 Update 5), SIMATIC Process Historian 2022 (All versions < V2022 SP1 Update 2), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 5), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 3), SIMATIC WinCC V7.4 (All versions), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 18), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5). The affected products run their DB server with elevated privileges which could allow an authenticated attacker to execute arbitrary OS commands with administrative privileges."
} }
] ]
}, },
@ -54,7 +54,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2020 SP2 Update 5"
} }
] ]
} }
@ -66,7 +66,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2022 SP1 Update 2"
} }
] ]
} }
@ -90,7 +90,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2020 SP2 Update 5"
} }
] ]
} }
@ -102,7 +102,7 @@
{ {
"version_affected": "<", "version_affected": "<",
"version_name": "0", "version_name": "0",
"version_value": "*" "version_value": "V2022 SP1 Update 2"
} }
] ]
} }

65
2024/45xxx/CVE-2024-45385.json
View File

@ -1,17 +1,74 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2024-45385", "ID": "CVE-2024-45385",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "productcert@siemens.com",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "A vulnerability has been identified in Industrial Edge Management OS (IEM-OS) (All versions). Affected components are vulnerable to reflected cross-site scripting (XSS) attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId": "CWE-79"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Siemens",
"product": {
"product_data": [
{
"product_name": "Industrial Edge Management OS (IEM-OS)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-416411.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-416411.html"
}
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:U/RC:C",
"baseScore": 4.7,
"baseSeverity": "MEDIUM"
} }
] ]
} }

461
2024/47xxx/CVE-2024-47100.json
View File

@ -1,17 +1,470 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2024-47100", "ID": "CVE-2024-47100",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "productcert@siemens.com",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0), SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0), SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0), SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0), SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-2XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-2XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-4XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-5XB0), SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-2XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0), SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0), SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0). The web interface of the affected devices is vulnerable to Cross-Site Request Forgery (CSRF) attacks. This could allow an unauthenticated attacker to change the CPU mode by tricking a legitimate and authenticated user with sufficient permissions on the target CPU to click on a malicious link."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-352: Cross-Site Request Forgery (CSRF)",
"cweId": "CWE-352"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Siemens",
"product": {
"product_data": [
{
"product_name": "SIMATIC S7-1200 CPU 1211C AC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1211C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1211C DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1212C AC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1212C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1212C DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1212FC DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1212FC DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1214C AC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1214C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1214C DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1214FC DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1214FC DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1215C AC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1215C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1215C DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1215FC DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1215FC DC/DC/Rly",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU 1217C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1212 AC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214 AC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214 DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214 DC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214FC DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1214FC DC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1215 DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1215C DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
},
{
"product_name": "SIPLUS S7-1200 CPU 1215FC DC/DC/DC",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V4.7"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-717113.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-717113.html"
}
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:O/RC:C",
"baseScore": 7.1,
"baseSeverity": "HIGH"
} }
] ]
} }

569
2024/53xxx/CVE-2024-53649.json
View File

@ -1,17 +1,578 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2024-53649", "ID": "CVE-2024-53649",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "productcert@siemens.com",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.80), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 6MD86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 6MD89 (CP300) (All versions >= V7.80), SIPROTEC 5 6MU85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7KE85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SA82 (CP100) (All versions >= V7.80), SIPROTEC 5 7SA82 (CP150) (All versions < V9.80), SIPROTEC 5 7SA86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SA87 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SD82 (CP100) (All versions >= V7.80), SIPROTEC 5 7SD82 (CP150) (All versions < V9.80), SIPROTEC 5 7SD86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SD87 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SJ81 (CP100) (All versions >= V7.80), SIPROTEC 5 7SJ81 (CP150) (All versions < V9.80), SIPROTEC 5 7SJ82 (CP100) (All versions >= V7.80), SIPROTEC 5 7SJ82 (CP150) (All versions < V9.80), SIPROTEC 5 7SJ85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SJ86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SK82 (CP100) (All versions >= V7.80), SIPROTEC 5 7SK82 (CP150) (All versions < V9.80), SIPROTEC 5 7SK85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SL82 (CP100) (All versions >= V7.80), SIPROTEC 5 7SL82 (CP150) (All versions < V9.80), SIPROTEC 5 7SL86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SL87 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7SS85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7ST85 (CP300) (All versions), SIPROTEC 5 7ST86 (CP300) (All versions < V9.80), SIPROTEC 5 7SX82 (CP150) (All versions < V9.80), SIPROTEC 5 7SX85 (CP300) (All versions < V9.80), SIPROTEC 5 7SY82 (CP150) (All versions < V9.80), SIPROTEC 5 7UM85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7UT82 (CP100) (All versions >= V7.80), SIPROTEC 5 7UT82 (CP150) (All versions < V9.80), SIPROTEC 5 7UT85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7UT86 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7UT87 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7VE85 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7VK87 (CP300) (All versions >= V7.80 < V9.80), SIPROTEC 5 7VU85 (CP300) (All versions < V9.80), SIPROTEC 5 Compact 7SX800 (CP050) (All versions < V9.80). Affected devices do not properly limit the path accessible via their webserver. This could allow an authenticated remote attacker to read arbitrary files from the filesystem of affected devices."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-552: Files or Directories Accessible to External Parties",
"cweId": "CWE-552"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Siemens",
"product": {
"product_data": [
{
"product_name": "SIPROTEC 5 6MD84 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 6MD85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 6MD86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 6MD89 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 6MU85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7KE85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SA82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SA82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SA86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SA87 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SD82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SD82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SD86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SD87 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ81 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ81 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SJ86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SK82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SK82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SK85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SL82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SL82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SL86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SL87 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SS85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7ST85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7ST86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SX82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SX85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7SY82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UM85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UT82 (CP100)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "*"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UT82 (CP150)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UT85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UT86 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7UT87 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7VE85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7VK87 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "V7.80",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 7VU85 (CP300)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
},
{
"product_name": "SIPROTEC 5 Compact 7SX800 (CP050)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V9.80"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-194557.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-194557.html"
}
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
} }
] ]
} }

65
2024/56xxx/CVE-2024-56841.json
View File

@ -1,17 +1,74 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2024-56841", "ID": "CVE-2024-56841",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "productcert@siemens.com",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "A vulnerability has been identified in Mendix LDAP (All versions < V1.1.2). Affected versions of the module are vulnerable to LDAP injection. This could allow an unauthenticated remote attacker to bypass username verification."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-90: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')",
"cweId": "CWE-90"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Siemens",
"product": {
"product_data": [
{
"product_name": "Mendix LDAP",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "V1.1.2"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-314390.html",
"refsource": "MISC",
"name": "https://cert-portal.siemens.com/productcert/html/ssa-314390.html"
}
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"baseScore": 7.4,
"baseSeverity": "HIGH"
} }
] ]
} }